Our Ability Jobs

Job Information

Trane Technologies Lead, Cybersecurity Risk Management in Wilmington, North Carolina

Lead, Cybersecurity Risk Management

Davidson NC 800E Beaty St, Davidson, North Carolina, United States

New

6 additional locations

Greensboro NC 8408 Triad Dr, Greensboro, North Carolina, United StatesVirginia, United StatesWilmington NC 3212 Pennington, Wilmington, North Carolina, United StatesRaleigh NC 4000 Business Pk, Raleigh, North Carolina, United StatesMatthews NC 13054 Bleinheim, Matthews, North Carolina, United StatesCharlotte NC South Tryon St, Charlotte, North Carolina, United States

General

Requisition # 2108488

Total Views 187

AtTrane TechnologiesTM and through our businesses includingTrane®andThermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. Were a team that dares to look at the worlds challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.

Remote within a Geography

Job Summary

As part of the Cybersecurity Governance, Risk, and Compliance (GRC) team, the Cybersecurity Risk Management Lead will play an integral role in identifying, evaluating, and reporting on information security risks in a manner that meets Trane Technologies’ regulatory and compliance requirements. This role reports to the Director of Cybersecurity GRC. The ideal candidate for this role has both the technical expertise and leadership skills to influence and seamlessly collaborate across multiple stakeholder groups.

Responsibilities:

  • Design, conduct and review risk assessments of several types against internal cybersecurity requirements, including:

  • Projects

  • Suppliers

  • Applications

  • Key Infrastructure components

  • Acquisitions and joint ventures

  • Document and report on identified risks associated with Trane Technologies’ business, products, systems and information assets

  • Work closely with key stakeholders on identifying adequate risk reduction measures where required, and collaborating with technical SMEs as needed

  • Manage the Cybersecurity Issues Management process, including

  • Reviewing, approving, and assigning owners to identified findings;

  • Reviewing, approving, and escalating exception requests to appropriate SMEs;

  • Ensuring compensating controls and remediation plans adequately address identified risks; and

  • Reporting metrics and status of open issues to senior management.

  • Conduct/manage cybersecurity reviews of third-party suppliers, coordinating closely with IT Sourcing and Legal

  • Serve as a key cybersecurity risk SME to advise other IT and cybersecurity team members

Qualifications:

  • Bachelor’s degree in a related field and/or a minimum of 7-10 years of equivalent experience in Information Security, IT Audit/Governance/Risk/Compliance, or similar role(s)

  • Solid technical understanding of cybersecurity concepts, standards, guidelines and principles

  • Effective project management and organizational skills, including managing multiple, concurrent projects and tasks

  • Strong analytical background and technical skills with the ability to apply regulatory requirements to IT operational and technical controls

  • Experience with applying IT control frameworks, such as NIST-CSF, NIST 800-53, ISO27001, PCI, SOX, SSAE 18

  • In-depth knowledge of technology, security, risk, and compliance best practices

  • Excellent interpersonal skills and ability to create collaborative relationships with colleagues across various groups and levels, and influence without authority

  • Demonstrated leadership skills with ability to communicate effectively and work independently, both as part of and leading a team

  • At least one of the following certifications preferred: CISM, CISSP, CISA, CRISC

  • Travel: 5-10%

We offer competitive compensation and comprehensive benefits and programs. We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.

We offer competitive compensation and comprehensive benefits and programs that help our employees thrive in both their professional and personal lives. We are proud of our winning culture which is inclusive and respectful at its core. We share passion for serving customers, caring for others, and boldly challenging what’s possible for a sustainable world.

We are committed to achieving workforce diversity reflective of our communities. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identify, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.

DirectEmployers