IT Supervisor - Governance & Compliance

IT Supervisor - Governance & Compliance - NSK Americas

The Company

NSK is a global manufacturer of ball and roller bearings, linear motion technology, automotive components and steering systems with both domestic and overseas manufacturing. NSK also offers a full range of services including reconditioning, ball screw repair, product integration, application engineering and predictive & preventative maintenance and reliability services. NSK's products and solutions are everywhere where things are in motion - even under the toughest conditions. NSK's high-precision rolling bearings are used in wind turbines and machine tools, linear components are found in production lines, while our automotive components are installed in the vehicles of almost every well-known automaker. 

The IT Supervisor - Governance & Compliance Role 

The IT Supervisor - Governance & Compliance is responsible for developing, implementing, and maintaining comprehensive framework for IT governance, risk management, and regulatory compliance. This role ensures that IT strategies align with business goals, that technology operations follow best practices, and that the organization complies with relevant legal, regulatory, and internal standards. The successful candidate will bring strong leadership, deep knowledge of IT controls, and a strategic mindset to enhance accountability, mitigate risk, and support business objectives.

Responsibilities 

IT Governance

• Develop and lead the IT governance framework to ensure strategic alignment, value delivery, and performance monitoring of IT initiatives. 
• Define and maintain IT policies, standards, procedures, and architecture principles. 
• Facilitate governance bodies such as IT Steering Committees, Architecture Review Boards, and Risk Committees. 
• Establish KPIs and reporting structures to monitor IT effectiveness and service delivery. 

IT Compliance

• Lead the development and implementation of IT compliance programs to meet internal policies and external regulations (e.g., SOX, GDPR, HIPAA, PCI-DSS).
• Design and enforce controls to ensure regulatory compliance and reduce risk exposure. 
• Collaborate with internal and external auditors to support audit processes and ensure timely remediation of findings. 
• Monitor changs in regulatory requirements and adjust compliance frameworks accordingly. 

Risk Management & Assurance

• Work with cybersecurity, risk, and business units to identify, assess, and mitigate IT-related risks.
• Maintain a compliance risk register and ensure continuous monitoring and control effectiveness.
• Oversee IT assessments, control testing, and third-party risk reviews. 

Policy Management & Awareness 

• Develop, maintain, and enforce IT policies covering security, data privacy, operations, and usage.
• Drive awareness and training programs to promote a culture of compliance and governance across IT and business units. 
• Provide advisory services to project and operations teams on compliance and governance requirements. 

Performance Reporting & Continuous Improvement 

• Create dashboards and reports for leadership highlight IT compliance status, audit findings, policy adherence, and governance metrics.
• Identify opportunities to streamline processes, close compliance gaps, and improve IT maturity. 
• Promote continuous improvement through feedback loops, process audits, and benchmarking. 

Qualifications 

Education & Experience 

• Bachelor's or Master's degree in Information Technology, Information Systems, Business Administration, Risk Management, or a related field. 
• 8 years of experience in IT governance, compliance, or risk management roles, preferably in a related industry. 

Professional Skills

• In-depth knowledge of IT governance and compliance frameworks (e.g., COBIT, ITIL, ISO 27001, NIST, SOX).
• Understanding of data protection and privacy regulations (e.g., GDPR, HIPAA, CCPA).
• Experience leading IT audits and managing control frameworks. 
• Familiarity with GRC platforms and tools (e.g., FreshService, ServiceNow GRC, RSA Archer, OneTrust).

Certifications (Preferred)

• CGEIT (Certified in the Governance of Enterprise IT)
• CISA (Certified Information Systems Auditor)
• CRISC (Certified in Risk and Information Systems Control)
• CISM (Certified Information Security Manager)
• ITIL, ISO 27001 Lead Implementor/Auditor, or equivalent 

Soft Skills

• Strong communication, presentation, and leadership skills.
• Analytical thinking with attention to detail.
• Ability to influence stakeholders and drive cross-functional initiatives.
• High level of integrity and commitment to ethical conduct.

Work Environment

• Ann Arbor headquarters or other company facilities. 
• May require travel between facilities, sister companies, suppliers, and customers.
• On-call support may be required during critical periods. 

NSK is an Equal Employment Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status, or any other characteristic protected by law.

VEVRAA Federal Contractor