Manager, IT Controls and Governance

About The Position

Requirements

• College diploma or university degree in information systems, computer science, cybersecurity, business administration, or a related field.
• A minimum of 8–10 years of progressive experience in IT controls, IT governance, cybersecurity, risk management, architecture governance, or a related leadership role, ideally within a manufacturing environment.
• Strong understanding of IT control frameworks, policy alignment, compliance processes, and implementation in complex operational environments.
• Experience working with enterprise IT standards and partnering with corporate IT functions.
• Collaborative experience in a cross-functional environment with both technical and business stakeholders.
• Demonstrated ability to help divisions address control alignment challenges through structured, risk-based guidance.
• Experience participating in architecture review, technology governance, or advisory forums to assess alignment, risk, and standards adherence.
• Strong analytical, facilitation, and communication skills with the ability to translate complex standards for technical and non-technical stakeholders.
• Working knowledge of audit, issue management, and compliance reporting concepts related to IT controls and governance.
• Magna International IT (MIT) standards, governance, and control owners
• Group Security Manager (GSM) and related cybersecurity stakeholders
• MIT architecture review boards and related architecture governance forums
• Selected Technology Advisory Groups (TAG) and other enterprise technology governance bodies
• Divisional IT leaders, site IT teams, and key compliance stakeholders across the Group
• Able to exercise sound judgment and make balanced, risk-aware decisions.
• Strong analytical and problem-solving capabilities with high attention to detail.
• Excellent listening, interpersonal, written, and verbal communication skills.
• Highly self-motivated, organized, and able to manage multiple priorities in a dynamic environment.
• Able to simplify complex requirements and drive practical, sustainable outcomes.
• Travel availability as required, up to 25%.

Nice To Haves

• Ideally within a manufacturing environment.

Responsibilities

• Drive alignment of Group and divisional IT control practices with Magna IT standards, policies, and cybersecurity expectations.
• Partner with MIT to refine control definitions and improve clarity of standards across divisional environments.
• Translate enterprise control requirements into guidance divisions can implement effectively.
• Advise the GSM and divisional IT leaders on control priorities and risk-based decisions that strengthen cybersecurity posture.
• Engage selected Technology Advisory Groups (TAG), as appropriate, to provide control, risk, and standards input that supports practical, secure, and standards-aligned outcomes.
• Identify opportunities to simplify controls, reduce ambiguity, and improve the effectiveness, consistency, and adoption of IT governance practices.
• Work closely with MIT, the GSM, and divisional IT teams to assess current-state control alignment, identify priority gaps, and shape governance recommendations that support stronger standards adoption.
• Support divisions and the GSM by clarifying control intent and advising on governance approaches for addressing findings from internal reviews, cyber assessments, and other IT compliance activities.
• Develop guidance and templates that help divisions implement controls consistently.
• Provide governance input on control maturity expectations and the measures used to evaluate alignment with IT standards and policies.
• Provide control and governance input to MIT architecture review processes and selected technology governance forums when standards, risk, or compliance considerations are involved.
• Collaborate with divisional and enterprise stakeholders to resolve control interpretation issues, remove roadblocks, and improve execution discipline.
• Provide subject matter expertise on IT controls, governance, architecture alignment, and cyber risk reduction in support of projects, initiatives, and operational changes.
• Promote a proactive compliance culture by helping stakeholders understand not only what controls are required, but why they matter to business resilience and cybersecurity.
• Establish governance expectations for how control effectiveness, standards alignment, and related risk indicators should be evaluated.
• Use compliance and risk insights to guide governance priorities, standards clarification, and alignment decisions across divisions and the GSM organization.
• Review recurring control and compliance themes to identify opportunities for improved standards clarity, simplification, and governance effectiveness.

Benefits

• Engaging and dynamic environment
• Support and resources needed to succeed
• Exciting, varied responsibilities
• Wide range of development prospects
• Career path should be as unique as you are