Manager, Cybersecurity Policy, Risk – Governance

Abtrex Industries, Inc

. Align cybersecurity governance strategy with Howmet’s strategic priorities, business strategies, and standard processes.

Posted 5/6/2026full-timePittsburgh • Pennsylvania • 🇺🇸 United StatesMid-LevelSenior💰 $110,000 - $130,000 per yearWebsite

Tech Stack

Tools & technologies

Cyber Security

About the role

Key responsibilities & impact

Align cybersecurity governance strategy with Howmet’s strategic priorities, business strategies, and standard processes.
Partner with Global Information Services (GIS) directors/teams and functional groups (HR, Legal, Privacy, Trade Compliance, EHS, etc.) to standardize and evolve cybersecurity posture.
Consult with Business Unit (BU) and Functional Area Leaders to assess governance and risk needs, delivering impactful programs in policy development, training, mentorship, and risk management.
Lead the global governance and risk management process to support cybersecurity maturity and performance alignment.
Build, lead, and mentor a high-performing cyber governance & risk team, fostering innovation and accountability.
Design and deliver training, communications, and tools to support cybersecurity initiatives across GIS and BU teams.
Develop and implement change management strategies to support adoption of new cybersecurity policies and practices.
Provide organizational maturity assessments and interventions to enhance cybersecurity capabilities.
Monitor industry trends, conduct benchmarking, and recommend solutions aligned with Howmet’s cybersecurity strategy.
Collaborate with CIS teams to align business processes and technology platforms for optimal governance and risk outcomes.
Support the CISO in strategic planning, compliance certifications (e.g., CMMC, ISO 27001), and regulatory interpretation (e.g., NIST 800-171, NIS2, UK Cyber Essentials).

Requirements

What you’ll need

Bachelor’s degree in business administration, Cybersecurity, Management of Information Systems (MIS), or a related field from an accredited institution.
At least 5 years of experience leading cybersecurity programs, including 2+ years in cyber governance and risk management in a global organization.
At least one Industry certifications such as CISSP, ISO 27001, CMMC CCP or equivalent.
Hands on experience implementing successful ISO27001 certifications.
Must be legally authorized to work in the United States without sponsorship.
Preferred Qualifications:
- Juris Doctor (JD) in Cyber Law, Intellectual Property Law, or related governance field.
- Advanced certifications: CMMC CCA, CISM, ISO 27001 Lead Implementer, ITIL, CRISC, GRC, or CISO-level credentials.
- Experience leading global cyber governance programs in a complex enterprise environment; preferably in a manufacturing environment

Benefits

Comp & perks

Health insurance
Paid time off
Flexible work arrangements
Professional development opportunities
Directing compliance certifications / regulatory interpretation

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity governancerisk managementpolicy developmentchange managementcybersecurity maturity assessmentISO 27001 implementationCMMC certificationNIST 800-171cybersecurity trainingbenchmarking

Soft Skills

leadershipmentorshipinnovationaccountabilitycollaborationcommunicationorganizational skillsstrategic planningconsultationimpactful program delivery

Certifications

CISSPISO 27001CMMC CCPCMMC CCACISMISO 27001 Lead ImplementerITILCRISCGRCCISO-level credentials