Sr. Manager, Cybersecurity Compliance
At Trane TechnologiesTM and through our businesses including Trane® and Thermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.
What’s in it for you:
Be a part of our mission! As a world leader in creating comfortable, sustainable, and efficient environments, it’s our responsibility to put the planet first. For us at Trane Technologies, sustainability is not just how we do business—it is our business. Do you dare to look at the world's challenges and see impactful possibilities? Do you want to contribute to making a better future? If the answer is yes, we invite you to consider joining us in boldly challenging what’s possible for a sustainable world.
As part of the Cybersecurity Governance, Risk, and Compliance (GRC) team, the Sr. Manager, Cybersecurity Compliance will be responsible for developing, implementing, and overseeing the cybersecurity compliance program that ensures the organization adheres to relevant security standards & regulations such as NIST, Fed-RAMP, ISACA, and NYDFS. The ideal candidate for this role has both the technical expertise and leadership skills to influence and seamlessly collaborate across multiple stakeholder groups.
Thrive at work and at home:
- Benefits kick in on DAY ONE for you and your family, including health insurance, parental leave, fertility benefits and adoption assistance.
- Significant opportunities for you in our wellness program such as fitness reimbursement, HSA contributions and back-up care for aging parents and children.
- 6% 401K match, additional 2% core contribution = 8% overall match
- Vacation, plus site paid holidays and volunteer days.
- Educational and training opportunities through company programs along with tuition advancement, tuition reimbursement and tuition assistance programs.
- Learn more about our benefits here!
Where is the work:
This is a Remote position.
What you will do:
- Responsible for planning, leading, and managing compliance related activities such as conducting assessments, audits, testing, and issue remediation related to NIST, Fed-RAMP, ISACA and other relevant requirements.
- Maintain compliance framework assessment toolkits used in testing and validation procedures.
- Monitor updates to relevant security frameworks and adjust program requirements as needed and reports changes to leadership
- Monitor activities to ensure compliance with internal policies, standards, processes and procedures
- Ability to manage and coordinate all aspects of compliance operation including tactical & strategic planning, reporting, resource allocation, coaching, mentoring, delivering reviews, setting objectives, etc.
- Collaborate effectively within Digital Risk, various IT, and global business teams as well as other internal/external partners to build relationships supporting accountabilities.
- Implement continuous improvement on digital compliance related processes and procedures.
- Communicate complex information, concepts, and metrics in a confident and well-organized manner through verbal, written, and visual means, and tailored to the audience including multiple levels of leadership.
- Proficient understanding of business focus and processes and the ability to inject cybersecurity compliance into the business through teamwork and influence.
- Ability to maintain a high level of integrity, trustworthiness and confidence to represent the company and security leadership with the highest level of professionalism.
- Excellent project management, personal and organizational skills.
What you will bring:
- Bachelor’s degree in IT or equivalent technical field.
- Minimum of 8 years of experience with a proven track record of success in IT or corporate/shared services.
- Experience with IT control frameworks, such as NIST-CSF, NIST 800-53, ISO27001, PCI, ISACA, Fed-RAMP.
- In-depth knowledge of governance, risk, and compliance best practices.
- Experience in IT Project and Program Management.
- Strategic thinker with ability to proactively plan and roll up program activities.
- Change management and strategic communications background/experience.
- Demonstrated success in delivering large scale complex programs/projects and initiatives.
- At least one of the following certifications preferred: CISM, CISSP, CISA, CRISC, PMP.
Compensation:
Base Salary: $160,000 - $220,000
Additional Compensation: Total compensation for this role also will include an incentive plan.
Disclaimer: This "range" could be a result of seniority, merit, geographic location where the work is performed, education, experience, travel requirements for the job, or because of a system the employer uses to measure earnings by quantity or quality of production (so, for example, positions that may not have traditional salary ranges).
We offer competitive compensation and comprehensive benefits and programs. We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.
#LI-Remote