Location(s): United States; Michigan, Ohio; Evendale, Van Buren Township
GE is the world's Digital Industrial Company, transforming industry with software-defined machines and solutions that are connected, responsive and predictive. Through our people, leadership development, services, technology and scale, GE delivers better outcomes for global customers by speaking the language of industry.
At GE Digital, we are creating technology and solutions to enable social, mobile, analytical and cloud capabilities for the Industrial Internet. The Industrial Internet is an open, global network that connects people, data and machines. It’s about making infrastructure more intelligent and advancing the industries critical to the world we live in. At GE, we believe it’s about the future of industry—energy, healthcare, transportation, manufacturing. It’s about making the world work better. GE is transforming itself to become the world's premier digital industrial company, executing critical outcomes for our customers. Explore how you can drive greater asset reliability, lower operating costs, reduce risk and accelerate operational performance with our Predix platform and software solutions. GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Role Summary: The Senior Staff Regulatory Compliance Advisor will ensure that global regulatory risks are identified, measured, treated and monitored in compliance within the overall risk profile of the GE Aviation business. The experienced individual will be part of a dynamic team that will partner globally with Aviation Digital Technology and functional owners, control owners, and product owners to operationalize controls and processes to meet external IT requirements
Influences engagement and decision making with external parties, such as the US Government
Negotiates with external parties and has influence over terms and conditions
Communicates solutions across the Risk & Compliance function and with cross-functional partner organizations and GE Businesses
Presents product / program strategies, technical roadmaps, risks, and recommendations to senior leaders (EB and SEB) within Risk & Compliance and to senior Risk leaders across GE
Together with the contract management and legal function, identify strategic regulatory risks associated with product delivery in support of strategic Aviation contracts
Evaluate existing and emerging regulatory risks and trends and provide necessary guidance to help improve overall compliance to the required regulations
Provide thought leadership and recommendations to incorporate / improve design of controls within regulatory risk requirements and framework
Work with teams to identify control deficiencies and ensure appropriate remediation development for sustainability
Track completion of regulatory risk requirements and controls through to completion and full compliance
Partner with the Legal organization on current and emerging regulations in the Cyber Security and Data Privacy spaces
Lead the documentation and quantification of the organization’s risk appetite, i.e., the level of risk they are prepared to accept
Lead the documentation of current state risk assessments, which involves analyzing risks as well as identifying, describing and estimating the risks affecting the business
Conduct and lead periodic remote and onsite internal assessments to ensure processes and controls are effective as designed
Develop and manage control testing assessment plans, status reporting, metrics, and dashboards using multiple tools and mediums
Establish key relationships and liaise with Aviation IT Leadership, Functional and Corporate Partners
Support the completion of any attestation / assessment reporting for external certification or regulatory bodies
Bachelor’s Degree in Computer Science or in “STEM” Majors (Science, Technology, Engineering and Math)
A minimum of 8 years of professional experience in Information Technology and Risk and Compliance OR Master’s degree with 6 years of experience in the Information Technology and Risk and compliance
Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job
Ability to travel up to 25% of the time
Ideal candidate will have prior experience from E&Y, KPMG, Deloitte, PwC or IT Corporate Audit Staff Graduate (GE Employee only)
Experience in designing, enhancing and implementing detailed wing to wing robust processes
Proven track record of detailed quality documentation delivery to defined standards
Understanding of regulatory and external certifications requirements as they relate to IT for regulations such as DFARS, FISMA, etc.
Experience of implementing and operating Risk Based Testing methodologies
Recognized certifications such as CRISC, CGEIT, CIA, CISM, CISSP, etc. Strong functional team player with experience working seamlessly across a heavy matrix structure
Excellent interpersonal, written/verbal communication and leadership skills with the ability to quickly build credibility, influence and make recommendations to all levels
Outstanding interpersonal, written/verbal communication skills
Knowledge of Control Objectives for Information & Related Technology (CoBIT) and other industry standards, such a NIST 800-53 and 800-171
Locations: United States; Michigan, Ohio; Evendale, Van Buren Township
We are in the process of transitioning to an improved job application system and in the interim we are operating with two systems. Have your Job ID ready (from the email you received when you applied) to log in and check your application status.
Click the appropriate button. If you don't know your job ID, you can still check your status: use both buttons.