IT Continuity Management PM

As IT Continuity Program Manager you will architect govern and continuously improve Garretts IT Continuity Management System (ITCM). You will ensure that critical IT systems applications and infrastructure supporting global manufacturing and engineering operations remain resilient recoverable and compliant with ISO 22301 NIST 800-53 and TISAX standards. You will partner with Infrastructure service owners Application Owners Plant IT focals and non-manufacturing site IT leads across geographies to embed a culture of preparedness and rigorous recoverability.

Business Continuity Planning

• Establish implement maintain and continually improve the IT Continuity Management System (ITCM) based on ISO 22301 and NIST 800-53 frameworks

• Develop and maintain comprehensive Business Continuity and Disaster Recovery plans for all IT systems and services

• Identify critical IT assets applications and infrastructure components essential to global business operations

• Work with Business functions to define Functional Cyber BCP manual workaround processes to sustain operations without IT dependence during a cyber crisis

• Conduct Business Impact Analyses (BIA) and Application Impact Analyses (AIA) to prioritise recovery efforts and allocate resources

• Monitor measure analyse and evaluate ITCM conformance with organisational policies and industry standards; address nonconformities

Risk Management

• Perform periodic risk assessments covering critical processes applications and infrastructure identified in BIA/AIA exercises

• Define appropriate RPO (Recovery Point Objective) and RTO (Recovery Time Objective) thresholds in collaboration with business and functional teams

• Implement risk mitigation strategies; stay current on emerging threats and adjust continuity plans accordingly

• Conduct periodic reviews and tests of IT Continuity Plans; report findings to management with actionable improvement recommendations

Plan Testing & Maintenance

• Coordinate and conduct regular DR drills tabletop exercises and full failover tests to validate plan effectiveness

• Document test results identify gaps and update DRP AIA and ARP documents accordingly

• Validate that all enterprise sites and applications have current tested DRP and AIA documentation per defined priority tiers

• Ensure IT DR sustainability plans are well-defined documented executed and meet defined recovery standards

Incident Response & Crisis Management

• Lead IT response during emergencies coordinating cross-functional efforts to minimise downtime and restore services

• Collaborate with incident response teams to contain and mitigate security breaches cyber-attacks and other disruptions

• Communicate proactively with senior management and stakeholders during crisis situations providing regular status updates

TISAX & Compliance

• Support TISAX certification for critical manufacturing plants and engineering R&D locations

• Assist IT Service Owners and Plant/Site IT managers in implementing TISAX requirements within their services and locations

• Coordinate with external audit firms for TISAX external assessments and label achievement

• Maintain compliance with ISO 22301 NIST 800-53 ISO 27001 SOX PCI and GDPR as applicable

Policy Development

• Establish and maintain IT continuity policies standards and procedures aligned to industry best practices and regulatory requirements

• Conduct internal assessments and coordinate internal/external audits at planned intervals

Training Awareness & Reporting

• Design and deliver training programmes to educate IT staff on their roles in continuity events

• Foster a culture of preparedness and resilience across the global IT organisation

• Report IT Continuity KPIs and metrics to senior IT and enterprise leadership on a periodic basis

• Proactively communicate remediation status to internal and enterprise leadership

Education

• Bachelors degree in Information Technology Computer Science or a related discipline (Masters preferred)

Experience

• 10 years of total IT experience; 5 years in IT Business Continuity / Disaster Recovery for a global enterprise

• 5 years implementing Business Continuity across a complex multi-site IT organisation

• 5 years managing Risk/Compliance programmes based on NIST ISO 27001 SOX PCI or GDPR frameworks

• 5 years in information security concepts: vulnerability assessments incident response enterprise security architecture and governance

• Proven track record of conducting enterprise risk assessments and driving measurable remediation outcomes

Certifications (Preferred)

• CISSP CISA ISO 22301 Lead Implementer/Auditor or ISO 27001 Lead Implementer/Auditor

Technical

• Deep understanding of IT infrastructure systems architecture cloud technologies and enterprise data centre operations

• Hands-on experience with BIA AIA DRP and ARP document frameworks

• Working knowledge of Microsoft 365 suite Excel Word Visio Project PowerPoint

• Familiarity with TISAX assessment criteria and automotive cybersecurity requirements (advantageous)

Leadership & Soft Skills

• 3 to 5 years managing customer-facing or extended cross-functional project teams

• 5 years in PMO design metrics management and audit/compliance activities

• Excellent analytical and problem-solving skills; ability to prioritise and decide under pressure

• Strong communication and stakeholder management skills able to engage from plant floor to C-suite

• Ability to work independently in a fast-paced environment with tight deadlines and minimal supervision

• Highly motivated results-oriented and an effective change agent capable of influencing across geographies

• High-impact global role with direct visibility to senior IT and enterprise leadership

• Opportunity to define and lead Garretts IT resilience strategy across 20 countries

• Exposure to TISAX ISO 22301 NIST and leading cybersecurity frameworks

• Competitive compensation professional development support and certification sponsorship

• Collaborative inclusive work culture with global cross-functional exposure