Senior Manager, IT Governance, Risk & Compliance; GRC

Senior Manager, IT Governance, Risk & Compliance (GRC)

Ingersoll Rand is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.

Reporting to the Chief Information Security Officer (CISO), the Senior Manager, IT GRC leads the company’s IT governance, risk management, and compliance initiatives. This role is responsible for developing, implementing, and maintaining policies, processes, and controls to ensure the organization’s information assets and systems are protected and compliant with internal and external requirements. The Senior Manager collaborates across teams and business units to drive a risk‑based approach to information security and compliance.

• Lead and manage the IT GRC program, including policy development, risk assessments, risk register, compliance monitoring, and audit coordination.
• Collaborate with business partners and IT resources to identify risk, develop remediation plans, and track resolution.
• Oversee the implementation and maintenance of controls to meet regulatory, contractual, and internal requirements (e.g., SOX, NIST, ISO 27001). Contribute to the controls design for emerging technologies such as Artificial Intelligence.
• Execute and ensure the effectiveness of access management for centrally managed systems.
• Administer and mature the enterprise GRC platform (e.g., Audit Board, Secure Ends, Service Now); implement workflows, dashboards, and automated testing.
• Support incident response and vulnerability management activities as they relate to compliance and risk.
• Support commercial and legal teams with customer security inquiries and compile packages to support commercial pursuits in regulated markets.
• Lead the utilization of the IRX business system in your area of responsibility.
• Maintain awareness of industry trends, regulatory changes, and best practices in IT GRC.
• Perform other duties as assigned.

• 8+ years’ experience in IT governance, risk management, and compliance, with at least 2 years in a leadership or management role.
• Strong understanding of regulatory frameworks and standards (e.g., SOX, GDPR, NIST, ISO 27001).
• Experience with risk assessment methodologies, control frameworks, and audit processes.
• Hands‑on experience implementing and operating GRC platforms (e.g., Audit Board, Service Now GRC, One Trust, Logic Gate) for risk registers, control testing, exceptions, and audit workflows.
• High level of integrity, professionalism, and ability to represent the company in GRC matters.
• Excellent communication and interpersonal skills; able to collaborate and influence across teams.
• Results‑oriented, with strong problem‑solving and decision‑making abilities.
• Ability to manage multiple priorities in a dynamic environment.

Bachelor’s degree in computer science, information assurance, MIS, or related field, or equivalent experience.

Advanced degree (MBA, master’s in information assurance/technology) preferred but not required.

Professional certifications such as CISSP, CISM, CISA, CRISC, CGEIT, or similar are preferred but not required.

Privacy certifications (e.g., CIPP, CIPT) are a plus.

Mid‑Senior level

Full‑time

Information Technology

Manufacturing

Referrals increase your chances of interviewing at Ingersoll Rand by 2x