IT Compliance Manager

Coeur Mining is a U.S.-based, well-diversified, growing, precious metals producer with four wholly-owned operations: the Palmarejo gold-silver complex in Mexico, the Rochester silver-gold mine in Nevada, the Kensington gold mine in Alaska and the Wharf gold mine in South Dakota. In addition, the Company wholly-owns the Silvertip silver-zinc-lead exploration project in British Columbia.

Coeur is the only mining company with headquarters in Chicago. The office is conveniently located in the heart of downtown Chicago, near public transportation. Coeur offers a flexible, hybrid work model and a culture that prioritizes health and safety, teamwork, career development, and growth.

We are a growing business with various opportunities in accounting, IT, engineering, technical services, HR, and other corporate functions. If you want to grow your career in a progressive, team-oriented environment, apply today.

The IT Governance, Risk, and Compliance (GRC) Manager will play a critical role in ensuring Coeur's IT department operates within the established risk tolerance, adheres to regulatory requirements, and implements industry best practices. This role will report to the Sr. Director of IT Infrastructure & Cybersecurity and will work alongside the Senior Manager of IT Operations Manager, focusing on designing, managing, and reviewing IT controls and compliance measures. The GRC Manager will oversee governance frameworks, risk management processes, and compliance programs to safeguard the organization's information assets.

Responsibilities

Governance

• Develop and implement IT governance frameworks and policies that align with organizational goals and regulatory requirements.

• Establish and maintain a robust IT control environment to ensure effective governance.

• Collaborate with IT leadership to align IT strategy with business objectives and risk appetite.

Risk Management

• Identify, assess, and prioritize IT risks, and develop mitigation strategies.

• Conduct regular risk assessments and help maintain the operational and enterprise risk registers.

• Develop and implement risk management processes, including risk identification, analysis, response planning, and monitoring.

• Coordinate with various stakeholders to integrate risk management practices into IT operations.

Compliance

• Ensure compliance with relevant regulatory requirements and industry standards (e.g., NIST, ISO, CIS, SOX).

• Design and implement compliance programs to monitor and report on adherence to regulatory and policy requirements.

• Oversee internal and external audits and assessments, ensuring timely remediation of findings.

• Develop and deliver compliance training and awareness programs for IT staff.

Control Management

• Design, implement, and review IT controls to mitigate identified risks and ensure compliance.

• Monitor the effectiveness of IT controls through regular testing and assessment.

• Work with IT Operations and Security Operations teams to ensure controls are integrated into daily operations.

• Develop and maintain documentation of control processes and procedures.

Collaboration and Reporting

• Collaborate with the Senior Manager of IT Operations, Security Operations team, and other stakeholders to ensure comprehensive risk and compliance coverage.

• Prepare and present reports on IT governance, risk, and compliance status to relevant managers and committees.

• Serve as a liaison with internal auditors, external auditors, regulators, and other third parties on IT GRC matters.

Continuous Improvement

• Stay abreast of the latest developments in IT governance, risk management, and compliance.

• Identify opportunities for process improvements and implement best practices.

• Foster a culture of continuous improvement and risk awareness within the IT department.

Position Requirements

Formal Education & Certification

• Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field. Master's degree preferred.

• Relevant certifications are preferred and include but are not limited to:

• CISM

• CRISC

• CISSP

• GCCC

Knowledge & Experience

• Minimum of 5-7 years of experience in IT governance, risk management, and compliance. Experience in a managerial or leadership role is preferred.

• Strong understanding of IT governance frameworks (e.g., COBIT, ITIL).

• In-depth knowledge of regulatory requirements and industry standards (e.g., NIST, ISO, CIS, SOX).

• Excellent analytical and problem-solving skills.

• Strong project management and organizational skills.

• Effective communication and interpersonal skills, with the ability to work collaboratively with cross-functional teams.

• Ability to manage multiple priorities and projects simultaneously.

Work Conditions

• Hybrid position based at the Coeur's headquarters in Chicago.

• May require occasional travel to other company locations or for training purposes.

• Ability to work under pressure and meet tight deadlines.