We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
Remote New

Director, Global Cybersecurity - Governance, Risk, Compliance & Identity

Donaldson Company
$158,000 - 211,300
parental leave, 401(k), retirement plan
United States
Jul 07, 2026

Donaldson is committed to solving the world's most complex filtration challenges. Together, we make cool things. As an established technology and innovation leader, we are continuously evolving to meet the filtration needs of our changing world. Join a culture of collaboration and innovation that matters and a chance to learn, effect change, and make meaningful contributions at work and in communities.

The Director, Global Cybersecurity Governance, Risk, Compliance & Identity is accountable for defining and executing Donaldson's enterprise cybersecurity governance and risk management strategy, while ensuring a consistent, integrated control environment across IT, OT, and product ecosystems.

Provide direct leadership of the global Governance Risk Compliance (GRC) function and responsibility for Identity & Access Management (IAM/ICAM) and Operational Technology (OT) Security programs, ensuring alignment to regulatory requirements, risk, and business objectives.

Build and maintain strong partnerships across the enterprise to embed security operations & compliance requirements into platforms and processes; serve as an escalation point for high-impact events and customer/security assurance needs.

As an advisor to executive leadership, this role drives decision-making across global manufacturing, digital transformation, and product innovation, strengthening Donaldson's security while enabling the business.

Key Responsibilities

  • Integrate GRC, IAM, and OT security into a unified cybersecurity risk model
  • Support M&A due diligence and integration from a cybersecurity and compliance perspective
  • Develop, mentor, and retain a high-performing security operations organization, including hiring strategy, succession planning, performance management, and a culture of accountability and learning
  • Establish and maintain cybersecurity KPIs, KRIs, and dashboards
  • Advise leadership on risk, investment priorities, and regulatory exposure
  • Drive continuous improvement of the enterprise control environment

Governance, Risk & Compliance

  • Direct leadership of the global GRC organization, including governance, risk management, compliance, and audit functions
  • Define and mature enterprise cybersecurity governance frameworks, policies, and standards
  • Establish an integrated risk management program spanning IT, OT, cloud, and third parties
  • Own regulatory, legal, and customer-driven compliance programs (e.g., SOX, GDPR, CMMC, and TISAX)
  • Oversee audits, regulatory engagements, and customer security assessments
  • Deliver cyber risk reporting and board-facing materials

Identity & Access Management

  • Provide strategic oversight of the IAM/ICAM function, including identity lifecycle, access governance, and privileged access usingSailPointISC as the core platform, powered by ServiceNow and other technologies.
  • Align IAM capabilities with Zero Trust architecture and security strategy
  • Drive identity risk through metrics, reporting, and control effectiveness
  • Partner with IAM leadership to ensure scalable, compliant identity services across global operations
  • Define, implement, and operate the use and impact of GenAI within IAM landscape along with use of GenAI in the ecosystem

Operational Technology (OT) Security

  • Provide strategic oversight of OT cybersecurity strategy and governance across manufacturing, labs, and ICS environments
  • Appy consistent security controls and risk management practices across plants and, lab environments
  • Partner with OT and manufacturing & technical leaders to embed security into system lifecycle and operations
  • Align OT security with regulatory, safety, and business continuity requirements

Minimum Qualifications

  • Bachelor's degree in Cybersecurity, Computer Science, Engineering, Risk Management, or related field
  • 10+ years of progressive experience in cybersecurity, GRC, or identity management
  • Experience managing budgets and vendors, building multi-year roadmaps, and delivering measurable outcomes through program and portfolio management
  • Proven experience leading enterprise GRC functions
  • Strong working knowledge of NIST CSF, NIST 800-53, ISO 27001, and SOC frameworks
  • Experience with global regulatory and compliance programs (such as SOX, GDPR, PCI DSS, CMMC, TISAX)
  • Experience collaborating with IAM and/or OT security leadership in large-scale environments
  • Professional certifications (such as CISSP, CISM, CRISC, or CISA)
  • Demonstrated experience operating in complex, global organizations
  • This role is on-site at our world headquarters in Bloomington, MN

Preferred Qualifications

  • Experience in global manufacturing, lab environment, or OT-intensive environments
  • Familiarity with Zero Trust, cloud security, and AI governance frameworks
  • Strong communication and board-level presentation capabilities
  • Proven ability to influence across matrixed IT, security, and business teams

Annual Salary Range: $158,000 - 211,300. Actual salaries will vary based on several factors including, but not limited to applicable work experience, training, education, performance.
Employee benefits are part of the competitive total rewards package that Donaldson Company, Inc. provides to you. Our comprehensive benefits program includes health benefits, retirement plan (401k), paid time away, paid leaves (including paid parental leave) and more.

Employment opportunities for positions in the United States may require use of information which is subject to the export control regulations of the United States. Hiring decisions for such positions are required by law to be made in compliance with these regulations. Applicants for employment opportunities in other countries must be able to meet the comparable export control requirements of that country and of the United States.

Donaldson Company has been made aware that there are several recruiting scams that are targeting job seekers. These scams have attempted to solicit money for job applications and/or collect confidential information, Donaldson will never solicit money during the application or recruiting process. Donaldson only accepts online applications through our Careers | Donaldson Company, Inc. website and any communication from a Donaldson recruiter would be sent using a donaldson.com email address. If you have any questions about the legitimacy of an employment opportunity, please reach out to talentacquisition@donaldson.com to verify that the communication is from Donaldson.

Our policy is to provide equal employment opportunities to all qualified persons without regard to race, gender, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity and/or expression, or other status protected by law.

Applied = 0

(web-77cf7d65c7-4rhzf)