Cyber Policy, Risk and Governance Manager

Genesis10 is seeking a Cyber Policy, Risk, and Governance Manager for a direct-hire opportunity with our client in Pittsburgh. This role offers a hybrid work schedule, with the flexibility to work remotely up to two days per week. Our client is recognized as a top employer, earning accolades on prestigious "Best Places to Work" lists, including Glassdoor Top 100 and Fortune 100 Best Companies.Compensation: $110,000 - $130,000 per year, W2.Job Description:Our client is seeking a strategic leader to drive the development, implementation, and oversight of their Cyber Policy, Risk, and Governance program. This role will play a critical part in ensuring alignment with evolving global cybersecurity regulations while enabling scalable, business-friendly solutions.This position requires a balance of deep technical expertise, strong leadership, and the ability to translate complex regulatory requirements into practical, enterprise-wide frameworks.Relocation: Our client offers a relocation packageKey ResponsibilitiesLead the development and execution of the organization's cybersecurity governance, risk, and compliance (GRC) strategyAlign cybersecurity governance with enterprise priorities, business strategies, and standardized processesPartner with Global Information Services (GIS) teams and cross-functional groups (HR, Legal, Privacy, Trade Compliance, EHS, etc.) to strengthen and standardize cybersecurity postureCollaborate with Business Unit and Functional leaders to assess risk and governance needs, delivering programs in policy development, training, and risk managementOversee global governance and risk management processes to enhance cybersecurity maturity and performanceBuild, lead, and mentor a high-performing cyber governance and risk team, fostering a culture of accountability and innovationDesign and deliver training, communications, and tools to support cybersecurity initiatives across the organizationDevelop and implement change management strategies to drive the adoption of cybersecurity policies and practicesConduct maturity assessments and recommend targeted improvements to strengthen cybersecurity capabilitiesMonitor industry trends, perform benchmarking, and recommend forward-looking solutions aligned with organizational strategyCollaborate with cybersecurity and IT teams to align business processes and technology platformsSupport the CISO in strategic planning, regulatory interpretation, and compliance initiatives (e.g., CMMC, ISO 27001, NIST 800-171, NIS2, UK Cyber Essentials)Develop and maintain cybersecurity policies, procedures, and standardsEstablish and track key performance metrics to support data-driven decision-making and continuous improvementManage internal teams and external vendors to deliver governance and risk objectives on time and within budgetRepresent cybersecurity in cross-functional initiatives, audits, customer engagements, and leadership forumsServe as a delegate for the CISO, as neededQualifications & RequirementsDemonstrated expertise in designing and implementing cybersecurity governance and GRC frameworksStrong knowledge of global cybersecurity standards and regulations (e.g., NIST CSF/RMF, ISO 27001, TISAX, AirCyber)Proven ability to interpret regulatory requirements and translate them into actionable policies and risk mitigation strategiesExperience managing risk registers and performing risk analysisStrong analytical, problem-solving, and decision-making skillsExperience with incident response governance and issue resolutionExcellent communication and presentation skills, with the ability to engage both technical and non-technical audiencesProven ability to influence stakeholders across all organizational levels without direct authorityExperience presenting to executive leadership and boardsDeep understanding of IT systems, infrastructure, and cybersecurity technologiesDemonstrated leadership and change management experience in a global, decentralized organizationEducation & ExperienceBachelor's degree in Business Administration, Cybersecurity, MIS, or a related fieldMinimum of 5 years of experience leading cybersecurity programsAt least 2 years of experience in cybersecurity governance and risk management within a global organizationRelevant industry certification required (e.g., ISO 27001, CMMC)About Genesis10Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client.For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us atGenesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.#DIG10-OH