Manager Cybersecurity Governance, Risk & Compliance
Job Description
Summary:
This role is responsible for leadingthe Cybersecurity Governance, Risk, & Compliance function with responsibility for a risk-based compliance program that integratesAssessment & Authorization (A&A/RMF),policy and planning, andcontinuous monitoringacross on-premise and cloud environments. Coordinates security control assessments and system authorizations perNIST RMFpractices and develops/maintains cybersecurity policy and governance to ensure alignment with enterprise goals and regulatory obligations (e.g., SOX, NIST 800-NNN, ISO/IEC 27001, privacy laws). Primary alignment toNICE Systems AuthorizationandCybersecurity Policy & Planningwork roles, with additional responsibilities consistent with theAuthorizing Official/Designating Representativerole for risk acceptance and accreditation decisions.
Essential Functions:
- Lead the enterpriseAssessment & Authorization (A&A)lifecycle-categorization, control selection/implementation, assessment, authorization, and continuous monitoring-using the NIST RMF and organizational procedures.
- Oversee and performsecurity control assessments; document results, identify systemic issues, and track remediation to closure.
- Prepare, review, and maintainauthorization packages(e.g., SSP, SAR, POA&M); recommend risk disposition and authorization decisions.
- Develop, publish, and maintaincybersecurity policies, standards, and implementation guidelines; ensure policy alignment to business objectives and regulations.
- Establishcompliance metrics and executive reporting(e.g., control effectiveness, residual risk trends, time-to-remediate, audit closure rate); drive continuous improvement.
- Coordinateinternal/external audits; design and implement independent audit processes for applications, networks, and systems; validate corrective actions.
- Governthird-party / supplier compliance(security and privacy requirements, contractual clauses, assessments) and track risk treatment.
- Advise leadership onrisk acceptance and authorizationdeterminations; ensure decisions reflect organizational risk tolerance and mission impacts
- Integrate policy, standards, and A&A activities withsecurity architecture/engineeringandIT operationsto embed compliance by design.
- Monitor emergingregulations and technologies; update policy and control baselines accordingly.
Qualifications:
- Bachelor's degree in information systems, computer science, cybersecurity, or related field (or equivalent experience).
- Certifications: CISA, CISM, CRISC, CIPM, CGEIT, or CISSP (preferred).
- 5+ years in IT Compliance / GRC, including RMF based A&A, policy governance, audit management, and third party risk.
- Hands on with NIST control baselines, ISO/IEC 27001 controls, SOX ITGCs, and privacy obligations,
- Experience with GRC platforms, evidence automation, and cloud compliance tooling.
- Strong leadership, stakeholder communication, and executive reporting skills.
Summary:
This role is responsible for leadingthe Cybersecurity Governance, Risk, & Compliance function with responsibility for a risk-based compliance program that integratesAssessment & Authorization (A&A/RMF),policy and planning, andcontinuous monitoringacross on-premise and cloud environments. Coordinates security control assessments and system authorizations perNIST RMFpractices and develops/maintains cybersecurity policy and governance to ensure alignment with enterprise goals and regulatory obligations (e.g., SOX, NIST 800-NNN, ISO/IEC 27001, privacy laws). Primary alignment toNICE Systems AuthorizationandCybersecurity Policy & Planningwork roles, with additional responsibilities consistent with theAuthorizing Official/Designating Representativerole for risk acceptance and accreditation decisions.
Essential Functions:
- Lead the enterpriseAssessment & Authorization (A&A)lifecycle-categorization, control selection/implementation, assessment, authorization, and continuous monitoring-using the NIST RMF and organizational procedures.
- Oversee and performsecurity control assessments; document results, identify systemic issues, and track remediation to closure.
- Prepare, review, and maintainauthorization packages(e.g., SSP, SAR, POA&M); recommend risk disposition and authorization decisions.
- Develop, publish, and maintaincybersecurity policies, standards, and implementation guidelines; ensure policy alignment to business objectives and regulations.
- Establishcompliance metrics and executive reporting(e.g., control effectiveness, residual risk trends, time-to-remediate, audit closure rate); drive continuous improvement.
- Coordinateinternal/external audits; design and implement independent audit processes for applications, networks, and systems; validate corrective actions.
- Governthird-party / supplier compliance(security and privacy requirements, contractual clauses, assessments) and track risk treatment.
- Advise leadership onrisk acceptance and authorizationdeterminations; ensure decisions reflect organizational risk tolerance and mission impacts
- Integrate policy, standards, and A&A activities withsecurity architecture/engineeringandIT operationsto embed compliance by design.
- Monitor emergingregulations and technologies; update policy and control baselines accordingly.
Qualifications:
- Bachelor's degree in information systems, computer science, cybersecurity, or related field (or equivalent experience).
- Certifications: CISA, CISM, CRISC, CIPM, CGEIT, or CISSP (preferred).
- 5+ years in IT Compliance / GRC, including RMF based A&A, policy governance, audit management, and third party risk.
- Hands on with NIST control baselines, ISO/IEC 27001 controls, SOX ITGCs, and privacy obligations,
- Experience with GRC platforms, evidence automation, and cloud compliance tooling.
- Strong leadership, stakeholder communication, and executive reporting skills.
About Rogers Corporation
Rogers Careers
Rogers Corporation Help build a cleaner, safer and more connected world with a career at Rogers Corporation. Rogers relies on an innovative workforce to develop our cutting edge best-in-class material technologies. Are you looking to grow with a global, results-oriented company? Apply today.
Our Culture
At Rogers Corporation, we’re growing fast. So we empower employees to take initiative and get results. We’re all working together toward a single mission: to power, protect and connect our world. Learn more about how our culture of excellence drives us forward.
Related Jobs
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Ambius
Benefits Start Day 1 for Full-Time Colleagues - No Waiting Period!For more information about our benefits, see below!We are proud to be a member of the Rentokil family of companies, the global leader...
Rogers Corporation would like you to finish the application on their website.
