Digital and AI Governance Manager

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems, Accounting, Law, or a related discipline; or equivalent combination of education and work experience.
• 8–10+ years of experience in IT compliance, GRC, or audit roles.
• Demonstrated SOX 404 compliance experience, including ITGC testing, documentation, and audit coordination.
• Deep knowledge of GRC frameworks: COBIT, COSO, NIST CSF, ISO 27001.
• Working knowledge of AI governance frameworks (NIST AI RMF, EU AI Act) and sufficient familiarity with AI/ML concepts to assess risk and engage credibly with technical teams.

Nice To Haves

• Professional certifications: CISA, CRISC, CGEIT, CISSP, or equivalent.
• AI governance credential (e.g., IAPP AI Governance Professional) or demonstrated experience building responsible AI programs.
• Experience with bias detection, fairness testing, or model auditability requirements in AI/ML systems.
• Knowledge of data privacy regulations and their intersection with AI, including GDPR and CCPA.
• Ability to translate complex compliance and AI risk concepts into clear business language for senior and executive stakeholders.
• Collaborative and influential leadership style; able to drive governance adoption across cross-functional teams in a positive and constructive way.
• Comfortable operating in ambiguous, fast-moving environments, particularly around emerging AI regulation and novel use cases.

Responsibilities

• Lead the design and execution of the organization’s AI governance program, including AI risk policies, standards, risk tiering, pre-deployment assessments, and ongoing monitoring of AI/ML systems in production.
• Support the AI Risk and Ethics Review Board to evaluate AI use cases with potential for bias, discrimination, privacy impact, or reputational harm, and define human-in-the-loop oversight requirements.
• Monitor evolving AI regulatory requirements (EU AI Act, NIST AI RMF, SEC guidance) and translate obligations into internal policy, controls, and governance checkpoints across the AI development lifecycle.
• Develop, implement, and manage a comprehensive IT Compliance strategy, including IT General Controls (ITGC), SOX 404, and digital policy frameworks (COBIT, COSO, ITIL, ISO 27001).
• Lead SOX IT compliance activities, including audit evidence collection, control testing, gap analysis, deficiency remediation, and reporting to IT management and Internal Audit.
• Develop and maintain the digital governance policy library covering AI, data, cloud, and automation domains; align with Legal, Privacy, and Cybersecurity on regulatory obligations (GDPR, CCPA, and sector-specific rules).
• Partner with IT leadership, Data & Analytics, Legal, Finance, and business stakeholders to assess, report on, and continuously improve governance maturity across both traditional IT and emerging digital/AI risk domains.

Benefits

• Competitive compensation
• Comprehensive benefits package
• A diverse array of resources to support you professionally and personally.