HiringCafe
Posted 1w ago

Senior IT Compliance Analyst | Cybersecurity Team

@ Garmin
View All Jobs
Cluj-Napoca, Cluj, Romania
OnsiteFull Time
Responsibilities:Leading audits, Managing initiatives, Evaluating controls
Requirements Summary:Senior IT compliance role requiring 5+ years in IT audit, risk and compliance, strong knowledge of COBIT/ISO27001/NIST/ITIL, and certifications such as CISA/CISM/CGEIT.
Technical Tools Mentioned:COBIT, ISO 27001, NIST, ITIL, PCI DSS
Save
Mark Applied
Hide Job
Report & Hide
Job Description

We are a global company with offices in the US, Europe and Asia. In these centers, we carry out various stages of product development, from initial concept to mass production of ready-to-sell units. We embrace a vertically integrated business model with strategic design, manufacturing, distribution, sales and support centers around the world to maximize our value to customers.

At Garmin, we leverage the full potential of both public and private cloud environments to drive innovation. These platforms empower us to efficiently manage technology, staffing, and costs as we evolve our product offerings.

In this role, you will manage and oversee Information Technology and Cyber Security compliance initiatives of moderate to high complexity. You will contribute to strengthening global IT and security controls, policies, standards, and procedures, ensuring alignment with organizational objectives and industry best practices while maintaining a strong and secure operational posture.

We believe that collaboration leads to the best ideas, and we rely heavily on team interaction. As a role based in Cluj-Napoca, this position will require 5 days in the office each week. 

Responsibilities:

  • Lead IT and Security audit, risk, and compliance activities across global infrastructure, applications, processes, and security controls.
  • Manage large, cross-functional compliance initiatives and drive complex projects with multiple stakeholders and phased deliverables.
  • Evaluate IT and Security systems, controls, and processes to identify risk, strengthen compliance, and improve control effectiveness.
  • Partner with business, IT, and Security leaders to conduct risk assessments, recommend process improvements, and support compliance strategy.
  • Perform control testing and assessments against recognized frameworks and standards such as COBIT, ISO 27001, NIST, and related regulatory requirements.
  • Develop and enhance compliance policies, procedures, controls, and awareness efforts to support ongoing regulatory and organizational compliance.
  • Analyze control gaps, identify root causes, recommend corrective actions, and communicate compliance status and metrics to leadership.
  • Support executive reporting and help drive improvements across IT, Security, and Engineering compliance efforts.
  • Improve efficiency in external cybersecurity questionnaires, RFPs, and RFQs through analysis and process optimization.