Posting Details

Posting Details

Posting Number NA01511

Position Information

Position Title Director, IT Governance and Compliance

State WI

Employment Status Full Time

Position Status Regular

If Limited Term (End Date of Assignment, Project, or Grant)

Position Type Staff

Job Family Information Technology

Position Overview

Be The Difference Begins with Great People.

Are you looking for a new opportunity where you can make the difference in the lives of students and faculty? We're always looking for highly talented individuals to join our team - people who think big, care deeply, and believe in being the difference in their work and community.

We prioritize student success, access to education, and service in our work to educate well-rounded servant leaders who transform their fields, our society and the world. Our Catholic, Jesuit approach emphasizes student engagement with the world around them and formation of the heart and mind.

We believe in our mission: The search for truth, the discovery and sharing of knowledge, the fostering of personal and professional excellence, the promotion of a life of faith, and the development of leadership expressed in service to others. These core values guide our relationships with our students, each other, and our community.

Marquette University offers a rich and competitive Total Rewards package including medical, dental, vision, 403(b) with up to 8% university match, generous time off package, and tuition benefits for employees, spouses, and dependents with no payback requirement! For more information, please view the Total Rewards Guide .

This is your next opportunity to join an organization that invests in their employees' career journey by diversifying their skills, deepening their expert knowledge, encouraging a healthy work-life balance, focusing on personal wellbeing, providing leadership training, and sustaining a culture of respect and inclusion.

The Director, IT Governance and Compliance oversees the university's IT governance frameworks to ensure alignment with strategic objectives. This role involves building campus-wide awareness and capability to adhere to regulations, conduct risk assessments and audits, and manage third-party risk. The Director develops and updates IT policies, provides training, and promotes a culture of compliance and security awareness. Additionally, this role leads responses to IT compliance incidents and collaborates with various departments to ensure a coordinated approach to governance and compliance.

Duties and Responsibilities

1. IT Governance: Assess, monitor, and maintain IT governance frameworks to ensure alignment with the university's strategic objectives. Develop and update IT policies and procedures. Ensure that these policies are effectively communicated and understood across the university.

2. Regulatory and Policy Compliance: Build awareness of and build capability on campus to adhere to federal, state, and local regulations, as well as university policies and industry standards. Monitor and evaluate compliance with IT policies and procedures, build remediation plans to address gaps, and develop and monitor budget to meet the demands.

3. Risk Assessment and Audit: Conduct regular risk assessments and audits to identify potential compliance vulnerabilities and risks. Develop and implement corrective action plans to address identified issues.

4. People Leadership and Management: Responsible for the supervision of staff, which includes but is not limited to hiring, terming, disciplinary actions, performance management, staff development, etc. Provide strategic leadership and direction to the project management, and business analysis teams, ensuring alignment with IT Services and the university's goals and objectives. Stay informed of industry trends and cultivate robust professional networks.

5. Third Party Risk Management: Manage and maintain a 3rd party risk management program, with regular risk assessments, contract reviews, and audits to identify risk in the vendor environment. Work with 3rd parties to develop and implement corrective actions to address identified issues.

6. Change Leadership: Provide training and guidance to IT staff and other university employees on governance and compliance requirements. Promote a culture of compliance and security awareness.

7. Compliance Monitoring and Reporting: Monitor compliance with IT policies and procedures. Prepare and present reports on governance and compliance activities to IT leadership and regulatory bodies as required.

8. Incident Response: Lead the response to IT compliance incidents, including investigations, documentation, and reporting. Ensure that appropriate measures are taken to prevent future incidents.

9. Interdepartmental Coordination: Work closely with other departments, including Legal, Human Resources, and Internal Audit, to ensure a coordinated approach to governance and compliance.

Required Knowledge, Skills and Abilities

Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field.

A minimum of 8 years' experience in IT governance, risk management compliance or related roles.

Supervisory and leadership experience.

Strong knowledge of IT governance frameworks, compliance regulations, and standards.

Proven track record in developing and updating IT policies, providing training, presenting reports, and promoting a culture of compliance and security awareness.

Excellent leadership skills, providing strategic direction, inspiring and developing staff.

Proven ability to systematically identify, evaluate and prioritize risks and develop and implement effective strategies to address.

Ability to effectively convey information, inspire and guide through change, and promote a culture of adaptability and continuous improvement

Demonstrated analytical and organizational skills. Ability to systematically gather, analyze, and interpret data to make informed decisions, while effectively organizing tasks and resources to achieve objectives efficiently.

Preferred Knowledge, Skills and Abilities

Knowledge and experience with the following: • Control frameworks, such as NIST 800-171, PCI DSS, HIPAA, or FERPA • GRC tool management • Third party vendor management monitoring tools

Certified Information Systems Auditor (CISA)

Certified in Risk and Information Systems Controls (CRISC)

Certified Information Systems Security Professional (CISSP)

Department IT Services

Posting Date 09/10/2025

Closing Date

Special Instructions to Applicants

EOE Statement

It is the policy of Marquette University to provide equal employment opportunities (EEO) to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or any other applicable federal or state-protected classification.