Cybersecurity Senior Manager

Reports to:

Chief Information Security Officer (CISO)

We are looking for an experienced and strategic leader to oversee Orbia’s global IT Risk, Controls & Compliance program. This role is responsible for driving governance, compliance, and security control frameworks across the organization, ensuring alignment with industry standards and regulatory requirements.

The position plays a critical role in strengthening IT governance, managing IT SOX compliance, overseeing SAP compliance activities, and partnering with senior stakeholders across IT, Audit, Legal, Compliance, and Business functions globally.

• Own and govern enterprise-wide IT and information security policies, procedures, and control frameworks
• Lead IT controls assurance, monitoring, reporting, and continuous compliance programs, including IT SOX
• Oversee SAP compliance and critical ERP control activities
• Partner with Legal, Compliance, Audit, and Business leaders on regulatory and security compliance initiatives
• Drive data classification and data protection frameworks across the organization
• Provide expertise on global security and privacy regulations (SOX, GDPR, PCI-DSS, etc.)
• Coordinate with internal and external auditors, regulators, and customers regarding IT control assurance
• Lead, mentor, and develop a global team focused on IT compliance, SAP controls, and cyber risk governance

• High visibility role interacting with senior global stakeholders across all Business Groups
• Significant impact on enterprise-wide IT governance and regulatory compliance
• Accountability for global compliance requirements related to IT risk, data privacy, ESG reporting, and SOX
• Direct influence on reducing financial, operational, and reputational risk for the organization
• Leadership responsibility for teams, vendors, and compliance-related budgets

• Bachelor’s degree required;
  Master’s degree in Computer Science, Engineering, Business, or related field preferred
• 15+ years of professional experience, including:
  • 10+ years in cybersecurity, IT risk, audit, or compliance roles
  • 5+ years in leadership positions
• Strong experience leading GRC (Governance, Risk & Compliance) programs in global matrix organizations
• Proven experience managing IT SOX compliance programs
• Experience with third-party risk assessments, internal/external audits, and security controls
• Knowledge of cybersecurity domains such as vulnerability management and security operations
• Familiarity with global regulations and standards including SOX, GDPR, PCI-DSS, ISO
  27001, NIST, CIS Controls, and ISAE
  3402
• Relevant certifications such as CISSP, CISA, or CISM preferred
• Fluent English required;
  Spanish is a plus

This is an opportunity to shape and strengthen global cybersecurity governance and compliance practices within a highly international organization, working closely with executive leadership and key stakeholders worldwide.