IT PROJECTS COMPLIANCE MANAGER

• Develop, implement, and maintain IT compliance policies, procedures, and processes in line with local, federal, and international regulations, industry standards, and best practices, including in particular GDPR and SOX, but also ensuring the adherence to other specific cybersecurity and data protection regulations applicable in Marelli countries (i.e. PIPL, LGPD, etc).

• Identify, assess, and mitigate IT compliance risks within the company through regular reviews, audits, and assessments.

• Coordinate and support external and internal IT audits, collaborating with auditors, IT teams, and other stakeholders to ensure a seamless process.

• Monitor and report on the status of IT compliance and risk management efforts, providing regular updates to senior management and stakeholders.

• Collaborate with cross-functional teams to develop and implement preventive and corrective action plans for IT compliance issues, ensuring timely and effective resolution.

• Stay up-to-date on industry trends, best practices, and regulatory changes that may impact IT compliance, and provide related advice and guidance to IT teams and management.

• Deliver IT compliance training and awareness programs to employees and contractors to foster a culture of compliance and risk management.

• Oversee the management of IT compliance tools and platforms, ensuring the effective implementation and maintenance of necessary controls.

• Strong knowledge of applicable laws, regulations, and frameworks governing IT compliance, such as GDPR, HIPAA, SOX, and PCI DSS.

• Knowledge and understanding of country-specific privacy and security regulations, such as Cybersecurity Law, LGPD, and other regional or local regulations that may impact IT compliance.

• Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or Certified Information Systems Security Professional (CISSP) certification is preferred.

• Bachelor’s degree in Computer Science, Information Systems, or a related field.

• A minimum of 5 years of experience in IT risk management, compliance, or a similar role.

• Excellent analytical and problem-solving skills, with the ability to identify and assess IT compliance risks.

• Strong interpersonal and communication skills, with the ability to collaborate effectively with cross-functional teams and communicate complex concepts in a clear and concise manner.

• Proven project management and organizational skills, with the ability to manage multiple priorities and meet deadlines in a fast-paced environment.

• Experience working in or with multinational organizations, navigating the complexities of diverse legal and regulatory environments