Manager Infrastructure & Digital Workplace

We are seeking an experienced Manager Infrastructure & Digital Workplace to evaluate and enhance the effectiveness of IT controls, security measures, and compliance with regulatory requirements. This role combines IT audit responsibilities with strategic advisory functions, working closely with external and internal teams to identify and manage operational and technology risks. You will provide actionable recommendations, strengthen governance practices, and help shape the organization’s IT risk posture.

• Plan and scope IT compliance audits, defining objectives and selecting systems or processes for review.
• Evaluate IT governance and controls, including access management, change control, backup procedures, and cybersecurity measures.
• Perform audit and compliance testing, collect evidence, and validate control effectiveness.
• Assess compliance with frameworks such as NIST, ISO 27001, COBIT, and regulatory standards (SOX, GDPR, HIPAA, MTSA).
• Document audit findings and prepare clear, actionable reports for management.
• Recommend remediation strategies and monitor corrective actions.
• Collaborate with IT teams and business units to strengthen governance and risk management practices and IT controls.
• Strong understanding of IT and OT systems, networks, and databases. Familiarity with cybersecurity principles, encryption, and access control mechanisms. Knowledge of frameworks such as NIST, and ISO 27001. Proficiency with audit and data analysis tools; scripting experience is a plus.
• Ability to assess IT risks and align controls with business objectives. Working knowledge of regulatory requirements (MTSA, SOX, GDPR, HIPAA) and compliance auditing practices.
• Strong critical thinking and attention to detail for identifying control gaps and vulnerabilities. Capability to interpret complex technical environments and recommend practical solutions.
• Excellent written and verbal communication skills for translating technical findings into clear reports. Strong interpersonal skills to collaborate with IT teams, business units, and auditors. High ethical standards and professional skepticism to maintain independence and objectivity.

• Bachelor’s degree in Management Information Systems, Computer Science, Information Security, Risk Management, or related field.
• 5+ years in IT Audit
• knowledge of Cybersecurity and GRC roles.
• Previous leadership experience required
• Experience with frameworks like ISO 27001 and NIST 2.0
• Proven experience in cybersecurity awareness program design and delivery.
• Strong analytical and problem‑solving abilities.
• Excellent communication and stakeholder management skills.
• Hands‑on experience with GRC tools (e.g., RSA Archer, Service Now, Audit Board).
• Familiarity with OT network infrastructure, SCADA/DCS systems, and security integration into SDLC.

• Knowledge of third‑party risk management and vendor compliance.
• Experience in IT auditing and identity/access management.

• CISSP, CISM, CISA, or equivalent.
• GRC‑related certifications (e.g., ISACA CRISC).