Job Responsibilities:

The IT/OT Security and Compliance Engineer supports Magna Exteriors in strengthening cybersecurity, compliance, and control effectiveness across both IT and Operational Technology (OT) environments. This role supports the implementation, enforcement, and monitoring of IT/OT security controls, including OT firewall standards, automated patching compliance, and cybersecurity policies aligned with Magna IT (MIT) standards. The position plays a key role in audit readiness and compliance sustainability, supporting divisions in preparing for and responding to IT, cybersecurity, and MAFACT audits, ensuring controls are implemented, monitored, and sustained across all divisions.

ESSENTIAL DUTIES & RESPONSIBILITIES

Standards Execution
• Ensure divisional environments align to enterprise security policies and defined IT/OT standards.
• Identify gaps in standard adoption and escalate risks where compliance or implementation is not achieved.
• Deliver training to divisional IT teams on cybersecurity standards, including automated patching, OT firewall requirements, and audit expectations.
• Partner with the Global Security Manager (GSM), Regional IT Managers, MIT, and divisional IT teams to coordinate standard implementation, issue resolution, and compliance follow-up.

IT/OT Operations, Controls & Compliance
• Support implementation, enforcement, and continuous monitoring of IT and OT cybersecurity standards, including automated patching, OT firewall baselines, and secure configuration requirements across all divisions.
• Support technical implementation and validation of OT firewall standards to ensure consistent deployment and sustainment across divisional environments.
• Develop and maintain compliance tracking tools, dashboards, and reporting mechanisms to monitor adherence to enterprise standards and initiatives.

Audit Support (IT, Cybersecurity & MAFACT)
• Prepare divisions for IT, OT, cybersecurity, and MAFACT audits by ensuring required controls, documentation, and evidence are in place and audit-ready.
• Participate in audits and represent control implementation status with auditors, MIT, and divisional teams.
• Track audit findings and remediation actions, ensuring issues are assigned, monitored, and closed within required timelines.
• Standardize audit preparation processes and expectations across divisions to improve consistency and readiness.

QUALIFICATIONS

Formal Education & Certification
• Bachelor's degree in information technology, Cybersecurity, Engineering, or a related field.
• Relevant cybersecurity certifications preferred (e.g., CISSP, CISM, CompTIA Security+).
• OT or industrial cybersecurity certification (e.g., ISA/IEC 62443) is an asset.

Knowledge & Experience
• 5+ years of experience in IT security, controls, compliance, or related fields.
• Experience with OT and network security, including firewall management and secure configuration practices.
• Understanding of cybersecurity frameworks, enterprise compliance standards, and control requirements.
• Experience working across cross-functional stakeholders in multi-site or divisional environments to support implementation of IT/OT security and compliance standards.
• Ability to translate enterprise security standards and control requirements into practical execution guidance for divisional IT and OT environments.
• Experience supporting audits, remediation tracking, and compliance follow-up activities.

-Ability to travel up to 50%

Key Interfaces
• Global Security Manager (GSM) and IT leadership.
• Magna IT (MIT) security, architecture, and infrastructure teams.
• Regional IT Managers and divisional IT teams.
• Internal and external auditors.
Worker Type:

Regular / Permanent

Group:

Magna Exteriors