Cyber Security, Policy, Risk and Governance Manager

Genesis10 is seeking a Manager, Cyber Security, Policy Risk & Governance with our client located in Pittsburgh, PA. This is a direct-hire, hybrid W-2 position requiring 3 days per week on-site.

Compensation: $110,000 - $130,000 per year, W2.

Job Description:
This strategic role is responsible for leading the development, implementation, and oversight of our Cyber Policy, Risk & Governance strategy related to evolving cyber regulations and laws

Responsibilities:

• This role requires deep technical expertise, strong leadership, and the ability to translate complex regulatory and security requirements into scalable, business-friendly solutions
• The role requires less than 25% domestic travel
• This position does the following in accordance with all applicable International, Federal, State and local laws/regulations and the Company's policies, procedures and guidelines:
• Align cybersecurity governance strategy with strategic priorities, business strategies, and standard processes
• Partner with Global Information Services (GIS) directors/teams and functional groups (HR, Legal, Privacy, Trade Compliance, EHS, etc.)
• to standardize and evolve cybersecurity posture
• Consult with Business Unit (BU) and Functional Area Leaders to assess governance and risk needs, delivering impactful programs in policy development, training, mentorship, and risk management
• Lead the global governance and risk management process to support cybersecurity maturity and performance alignment
• Build, lead, and mentor a high-performing cyber governance & risk team, fostering innovation and accountability
• Design and deliver training, communications, and tools to support cybersecurity initiatives across GIS and BU teams
• Develop and implement change management strategies to support adoption of new cybersecurity policies and practices
• Provide organizational maturity assessments and interventions to enhance cybersecurity capabilities
• Monitor industry trends, conduct benchmarking, and recommend solutions aligned with cybersecurity strategy
• Collaborate with CIS teams to align business processes and technology platforms for optimal governance and risk outcomes
• Support the CISO in strategic planning, compliance certifications (e.g., CMMC, ISO 27001), and regulatory interpretation (e.g., NIST 800-171, NIS2, UK Cyber Essentials)
• Create and manage procedures, work instructions, and contribute to corporate cybersecurity policies and standards
• Track and report performance metrics to guide program investments and continuous improvement
• Oversee internal teams and external vendors to meet governance and risk objectives within budget and timelines
• Represent CIS in cross-business planning initiatives and support CISO in governance-related audits, customer inquiries, and leadership engagements
• Serve as a leadership proxy for the CISO when required

Requirements:

• Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio, Project, Outlook, SharePoint)
• Expertise in designing and delivering GRC programs and cybersecurity governance frameworks
• Strong understanding of global cybersecurity laws, regulations, and standards (e.g., NIST CSF & RMF, ISO 27001, TISAX, AirCyber)
• Ability to interpret and apply regulatory requirements to policy development and risk mitigation strategies
• Skilled in risk tracking and analysis using tools such as risk registers
• Strong analytical and decision-making capabilities based on data and cybersecurity trends
• Experience in incident response planning and governance issue resolution
• Exceptional communication and presentation skills for both technical and non-technical audiences
• Proven ability to influence and collaborate across all organizational levels without direct authority
• Experience presenting to executive leadership and boards
• Deep understanding of IT systems, infrastructure, and cybersecurity technologies
• Demonstrated leadership, problem-solving, and change management skills in a global, decentralized environment
• Bachelor's degree in business administration, Cybersecurity, Management of Information Systems (MIS), or a related field from an accredited institution
• At least 5 years of experience leading cybersecurity programs, including 2 years in cyber governance and risk management in a global organization
• At least one Industry certifications such as CISSP, ISO 27001, CMMC CCP or equivalent
• Must be legally authorized to work in the United States without sponsorship

About Genesis10
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client.

Benefits of Working with Genesis10:
Access to hundreds of clients, most who have been working with Genesis10 for 5-20 years.
The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF)

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

#DIG10-OH