Manager, IT Controls and Governance

Job descriptions may display in multiple languages based on your language selection.

What we offer:

At Magna, you can expect an engaging and dynamic environment where you can help to develop industry-leading automotive technologies. We invest in our employees, providing them with the support and resources they need to succeed. As a member of our global team, you can expect exciting, varied responsibilities as well as a wide range of development prospects. Because we believe that your career path should be as unique as you are.

Group Summary:

The Magna Exteriors portfolio of products includes access systems such as liftgates, exterior trim, modular systems, front-end modules including fascia, active aerodynamic systems and other lightweight structural components for automotive, commercial truck and other industrial markets.

Recognized globally as an innovator in all aspects of vehicle exteriors, Magna provides everything needed, from materials development and design through manufacturing and assembly, to help automakers create sleek, state-of-the-art vehicles across the world.

Job Responsibilities:

The Manager of IT Controls advances Magna IT standards alignment across the Group by refining control definitions with Magna International IT (MIT) and helping the Group Security Manager (GSM) and divisions apply them effectively. The role bridges enterprise standards and divisional execution to strengthen cybersecurity posture and reduce operational risk. The position contributes control, risk, and standards input to MIT architecture review processes and selected technology governance forums, while providing governance direction that supports consistent interpretation and adoption of IT controls across the Group.

ESSENTIAL DUTIES & RESPONSIBILITIES:
Strategy
• Drive alignment of Group and divisional IT control practices with Magna IT standards, policies, and cybersecurity expectations.
• Partner with MIT to refine control definitions and improve clarity of standards across divisional environments.
• Translate enterprise control requirements into guidance divisions can implement effectively.
• Advise the GSM and divisional IT leaders on control priorities and risk-based decisions that strengthen cybersecurity posture.
• Engage selected Technology Advisory Groups (TAG), as appropriate, to provide control, risk, and standards input that supports practical, secure, and standards-aligned outcomes.
• Identify opportunities to simplify controls, reduce ambiguity, and improve the effectiveness, consistency, and adoption of IT governance practices.

Operations
• Work closely with MIT, the GSM, and divisional IT teams to assess current-state control alignment, identify priority gaps, and shape governance recommendations that support stronger standards adoption.
• Support divisions and the GSM by clarifying control intent and advising on governance approaches for addressing findings from internal reviews, cyber assessments, and other IT compliance activities.
• Develop guidance and templates that help divisions implement controls consistently.
• Provide governance input on control maturity expectations and the measures used to evaluate alignment with IT standards and policies.
• Provide control and governance input to MIT architecture review processes and selected technology governance forums when standards, risk, or compliance considerations are involved.
• Collaborate with divisional and enterprise stakeholders to resolve control interpretation issues, remove roadblocks, and improve execution discipline.
• Provide subject matter expertise on IT controls, governance, architecture alignment, and cyber risk reduction in support of projects, initiatives, and operational changes.
• Promote a proactive compliance culture by helping stakeholders understand not only what controls are required, but why they matter to business resilience and cybersecurity.

Performance & Measurement
• Establish governance expectations for how control effectiveness, standards alignment, and related risk indicators should be evaluated.
• Use compliance and risk insights to guide governance priorities, standards clarification, and alignment decisions across divisions and the GSM organization.
• Review recurring control and compliance themes to identify opportunities for improved standards clarity, simplification, and governance effectiveness.

QUALIFICATIONS:
To perform this job successfully, an individual must be able to perform each essential duty and responsibility satisfactorily. The requirements listed below are representative of the knowledge, skill, ability and/or physical demands required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Formal Education & Certification
• College diploma or university degree in information systems, computer science, cybersecurity, business administration, or a related field.

Knowledge & Experience
• A minimum of 8-10 years of progressive experience in IT controls, IT governance, cybersecurity, risk management, architecture governance, or a related leadership role, ideally within a manufacturing environment.
• Strong understanding of IT control frameworks, policy alignment, compliance processes, and implementation in complex operational environments.
• Experience working with enterprise IT standards and partnering with corporate IT functions.
• Collaborative experience in a cross-functional environment with both technical and business stakeholders.
• Demonstrated ability to help divisions address control alignment challenges through structured, risk-based guidance.
• Experience participating in architecture review, technology governance, or advisory forums to assess alignment, risk, and standards adherence.
• Strong analytical, facilitation, and communication skills with the ability to translate complex standards for technical and non-technical stakeholders.
• Working knowledge of audit, issue management, and compliance reporting concepts related to IT controls and governance.

Key Interfaces
• Magna International IT (MIT) standards, governance, and control owners
• Group Security Manager (GSM) and related cybersecurity stakeholders
• MIT architecture review boards and related architecture governance forums
• Selected Technology Advisory Groups (TAG) and other enterprise technology governance bodies
• Divisional IT leaders, site IT teams, and key compliance stakeholders across the Group

Personal Attributes
• Able to exercise sound judgment and make balanced, risk-aware decisions.
• Strong analytical and problem-solving capabilities with high attention to detail.
• Excellent listening, interpersonal, written, and verbal communication skills.
• Highly self-motivated, organized, and able to manage multiple priorities in a dynamic environment.
• Able to simplify complex requirements and drive practical, sustainable outcomes.
• Travel availability as required, up to 25%.

Physical Demands/Work Environment - Normal amount of sitting or standing, average mobility to move around an office environment, able to conduct normal amount of work at a computer.
Awareness, Unity, Empowerment:

At Magna, we believe that a diverse workforce is critical to our success. That's why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email or traditional mail to comply with GDPR requirements and your local Data Privacy Law.

AI-Assisted Screening Disclosure

As part of our commitment to a fair, consistent, and efficient recruitment process, we may use artificial intelligence (AI) tools to assist in the initial screening of applications submitted through our Workday system. These tools help identify qualifications and experience that align with the role requirements. Please note that AI is used solely to support our recruiters. Final decisions are always made by the hiring manager and the hiring team. Importantly, no applicant data is shared externally through these AI tools. All information remains securely within our systems and is handled in accordance with our privacy and data protection policies.

Under conditions defined by applicable law, you may have the right to request an explanation of how AI is used to support decision-making.

If you have any questions or concerns about this process, feel free to contact our Talent Attraction team.

Worker Type:

Regular / Permanent

Group:

Magna Exteriors