×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Manager, Cybersecurity Policy, Risk & Governance

Job in Pittsburgh, Allegheny County, Pennsylvania, 15289, USA
Listing for: Howmet Corporation
Full Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below
Job Info
  • Job Identification 116015
  • Job Category Information Technology
  • Posting Date 02/03/2026, 08:04 PM
  • Locations 201 Isabella Street, Pittsburgh, PA, 15212, US (Hybrid)
  • Job Schedule Full time
  • Linked In Recruiter Tag #LI-MC1
  • Export-Controlled Data No
, Responsibilities

Howmet Aerospace Inc. has an exciting opportunity to join our dynamic Cybersecurity team as a Manager, Cybersecurity Policy, Risk & Governance. This position will report directly to the Chief Information Security Officer (CISO). This strategic role is responsible for leading the development, implementation, and oversight of our Cyber Policy, Risk & Governance strategy related to evolving cyber regulations and laws.

This role requires deep technical expertise, strong leadership, and the ability to translate complex regulatory and security requirements into scalable, business-friendly solutions. As a subject matter expert in Cyber Policy, Risk & Governance, you will play a pivotal role in ensuring that cybersecurity controls are effectively designed, implemented, and communicated across the organization to protect Howmet Aerospace's global information assets.

This role is based at Howmet's Corporate Headquarters located in Pittsburgh, PA and follows a hybrid schedule of two remote days per week. The role requires less than 25% domestic travel.

Major activities/key challenges:

This position does the following in accordance with all applicable International, Federal, State and local laws/regulations and the Company's policies, procedures and guidelines:

  • Align cybersecurity governance strategy with Howmet's strategic priorities, business strategies, and standard processes.

  • Partner with Global Information Services (GIS) directors/teams and functional groups (HR, Legal, Privacy, Trade Compliance, EHS, etc.) to standardize and evolve cybersecurity posture.

  • Consult with Business Unit (BU) and

    Functional Area

    Leaders to assess governance and risk needs, delivering impactful programs in policy development, training, mentorship, and risk management.

  • Lead the global governance and risk management process to support cybersecurity maturity and performance alignment.

  • Build, lead, and mentor a high-performing cyber governance & risk team, fostering innovation and accountability.

  • Design and deliver training, communications, and tools to support cybersecurity initiatives across GIS and BU teams.

  • Develop and implement change management strategies to support adoption of new cybersecurity policies and practices.

  • Provide organizational maturity assessments and interventions to enhance cybersecurity capabilities.

  • Monitor industry trends, conduct benchmarking, and recommend solutions aligned with Howmet's cybersecurity strategy.

  • Collaborate with CIS teams to align business processes and technology platforms for optimal governance and risk outcomes.

  • Support the CISO in strategic planning, compliance certifications (e.g., CMMC, ISO 27001), and regulatory interpretation (e.g., NIST 800-171, NIS2, UK Cyber Essentials).

  • Create and manage procedures, work instructions, and contribute to corporate cybersecurity policies and standards.

  • Track and report performance metrics to guide program investments and continuous improvement.

  • Oversee internal teams and external vendors to meet governance and risk objectives within budget and timelines.

  • Represent CIS in cross-business planning initiatives and support CISO in governance-related audits, customer inquiries, and leadership engagements.

  • Serve as a leadership proxy for the CISO when required.

Essential knowledge, skills, and abilities:

  • Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio, Project, Outlook, SharePoint).

  • Expertise in designing and delivering GRC programs and cybersecurity governance frameworks.

  • Strong understanding of global cybersecurity laws, regulations, and standards (e.g., NIST CSF & RMF, ISO 27001, TISAX, Air Cyber).

  • Ability to interpret and apply regulatory requirements to policy development and risk mitigation strategies.

  • Skilled in risk tracking and analysis using tools such as risk registers.

  • Strong analytical and decision-making capabilities based on data and cybersecurity trends.

  • Experience in incident…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search