Senior IT Compliance Analyst | Cybersecurity Team

We are a global company with offices in the US, Europe and Asia. In these centers, we carry out various stages of product development, from initial concept to mass production of ready-to-sell units. We embrace a vertically integrated business model with strategic design, manufacturing, distribution, sales and support centers around the world to maximize our value to customers.

At Garmin, we leverage the full potential of both public and private cloud environments to drive innovation. These platforms empower us to efficiently manage technology, staffing, and costs as we evolve our product offerings.

In this role, you will manage and oversee Information Technology and Cyber Security compliance initiatives of moderate to high complexity. You will contribute to strengthening global IT and security controls, policies, standards, and procedures, ensuring alignment with organizational objectives and industry best practices while maintaining a strong and secure operational posture.

We believe that collaboration leads to the best ideas, and we rely heavily on team interaction. As a role based in Cluj-Napoca, this position will require 5 days in the office each week. 

Responsibilities:

• Lead IT and Security audit, risk, and compliance activities across global infrastructure, applications, processes, and security controls.
• Manage large, cross-functional compliance initiatives and drive complex projects with multiple stakeholders and phased deliverables.
• Evaluate IT and Security systems, controls, and processes to identify risk, strengthen compliance, and improve control effectiveness.
• Partner with business, IT, and Security leaders to conduct risk assessments, recommend process improvements, and support compliance strategy.
• Perform control testing and assessments against recognized frameworks and standards such as COBIT, ISO 27001, NIST, and related regulatory requirements.
• Develop and enhance compliance policies, procedures, controls, and awareness efforts to support ongoing regulatory and organizational compliance.
• Analyze control gaps, identify root causes, recommend corrective actions, and communicate compliance status and metrics to leadership.
• Support executive reporting and help drive improvements across IT, Security, and Engineering compliance efforts.
• Improve efficiency in external cybersecurity questionnaires, RFPs, and RFQs through analysis and process optimization.

• Bachelor’s degree in Information Technology, Management Information Systems, Computer Science, or a related field, or an equivalent combination of education and relevant experience.
• 5+ years of experience in IT audit, technology compliance, risk management, regulatory compliance, legal compliance, or related fields.
• Experience leading or supporting complex compliance, audit, or risk initiatives in a corporate, consulting, professional services, or similar environment.
• Strong knowledge of IT general controls, IT risk identification and mitigation, and industry frameworks such as COBIT, ISO 27001, NIST, and ITIL.
• Experience with project management, change management, and communicating initiatives to senior leadership.
• Excellent verbal, written, and interpersonal communication skills, with the ability to work effectively across teams and stakeholders.
• Strong analytical, organizational, and problem-solving skills, with attention to detail and quality.
• Ability to manage multiple priorities and work independently in a fast-paced environment.
• Relevant certifications such as CISA, CISM, CGEIT, PCI DSS ISA, ISO 27001 Implementer, or ISO 27001 Auditor are strongly preferred.

Benefits to enhance your experience:

• 24 days off each year plus extra vacation days based on years at Garmin and compensation for legal holidays
• Health package subscription and yearly budget for glasses
• Monthly budget for sports and wellbeing activities
• Local and global career development programs (training, mentorship, technical and leadership development, and more)
• Access to e-learning platforms and support for technical conferences attendance
• Loyalty bonus within the company, plus other special bonuses (for holidays and personal life events)
• Meal tickets

Yours exclusively when part of our team:

• Significant discount for Garmin products
• Employee stock purchase plan
• Contribution to the retirement plan (Pillar 3)
• Garmin products available for testing and borrowing
• A comprehensive event series championing wellbeing, sports, and community tailored to foster holistic health (featuring sports events, classes, hackathons, parties, and more)
• Other benefits which we invite you to discover along the recruitment process

Garmin Cluj is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, national origin, sex, age, or disability.