Cybersecurity Compliance Lead

At Trane Technologies^TM  and through our businesses including Trane^® and Thermo King^®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.

What’s in it for you:

Be a part of our mission! As a world leader in creating comfortable, sustainable, and efficient environments, it's our responsibility to put the planet first. For us at Trane Technologies, sustainability is not just how we do business—it is our business. Do you dare to look at the world's challenges and see impactful possibilities? Do you want to contribute to making a better future? If the answer is yes, we invite you to consider joining us in boldly challenging what's possible for a sustainable world. 

Trane Technologies is currently seeking a Cybersecurity Compliance Lead who will be a part of the Product Security and Compliance team. This role will be responsible for developing, implementing, and overseeing the cybersecurity compliance program that ensures products adhere to relevant security standards and regulations, such as NIST, FedRAMP, TXRAMP, SOC2, ISO, and IEC. The ideal candidate for this role has both the technical expertise and leadership skills necessary to influence and collaborate across multiple stakeholder groups.

Thrive at work and at home: 

• Benefits kick in on DAY ONE for you and your family, including health insurance and holistic wellness programs that include generous incentives – WE DARE TO CARE!   

• Family building benefits include fertility coverage and adoption/surrogacy assistance.   

• 401K match up to 6%, plus an additional 2% core contribution = up to 8% company contribution.    

• Paid time off, including in support of volunteer and parental leave needs.      

• Educational and training opportunities through company programs along with tuition assistance and student debt support.    

• Learn more about our benefits here!

Where is the work:

From Monday to Thursday, work onsite with your colleagues. On Fridays, choose your work location, balancing what your work requires.

What you will do:

• Responsible for planning, leading, and managing compliance-related activities such as conducting assessments, audits, testing, and issue remediation related to NIST, FedRAMP, TXRAMP, SOC2, ISO, IEC and other relevant requirements.
• Maintain compliance framework assessment toolkits used in testing and validation procedures.
• Monitor updates to relevant security frameworks and adjust program requirements as needed, and report changes to leadership.
• Monitor activities to ensure compliance with internal policies, standards, processes and procedures. Ability to manage and coordinate all aspects of compliance operation, including tactical & strategic planning, reporting, etc.
• Collaborate effectively within the Product Security and Compliance team, various Engineering and IT stakeholders, as well as other internal/external partners to build relationships supporting accountabilities.
• Collaborate effectively within the Product Security and Compliance team and pre-sales support team to support customer cybersecurity questionnaires, requirements and audits.
• Implement continuous improvement on product security compliance-related processes and procedures. Communicate complex information, concepts, and metrics in a confident and well-organized manner through verbal, written, and visual means and tailored to the audience.
• Proficient understanding of business focus and processes, with the ability to integrate cybersecurity compliance into the business through effective teamwork and influence.
• Ability to maintain a high level of integrity, trustworthiness, and confidence in representing the company and security leadership with the highest level of professionalism. Excellent project management, personal and organizational skills.

What you will bring:

• Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security.
• Minimum of 5 years of experience with security control frameworks, including NIST-CSF, NIST 800-53, ISO 27001, FedRAMP, SOC 2, and IEC.
• In-depth knowledge of governance, risk, and compliance best practices.
• Experience in Project and Program Management.
• Strategic thinker with the ability to proactively plan and roll up program activities.
• Experience in change management and strategic communications.
• Demonstrated success in delivering large-scale complex programs/projects and initiatives.
• Desirable security certification(s): CISM, CISSP, CISA, CRISC, PMP.

Compensation: 

Base Salary: $117,000 - $140,000

Disclaimer: This "range" could be a result of seniority, merit, geographic location where the work is performed, education, experience, travel requirements for the job, or because of a system the employer uses to measure earnings by quantity or quality of production (so, for example, positions that may not have traditional salary ranges).

Equal Employment Opportunity:

We offer competitive compensation and comprehensive benefits and programs. We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.

#LI-Hybrid