As IT Continuity Program Manager, you will architect, govern, and continuously improve Garrett’s IT Continuity Management System (ITCM). You will ensure that critical IT systems, applications, and infrastructure supporting global manufacturing and engineering operations remain resilient, recoverable, and compliant with ISO 22301, NIST 800-53, and TISAX standards. You will partner with Infrastructure service owners, Application Owners, Plant IT focals, and non-manufacturing site IT leads across geographies to embed a culture of preparedness and rigorous recoverability.
Key Responsibilities
Business Continuity Planning
Establish, implement, maintain, and continually improve the IT Continuity Management System (ITCM) based on ISO 22301 and NIST 800-53 frameworks
Develop and maintain comprehensive Business Continuity and Disaster Recovery plans for all IT systems and services
Identify critical IT assets, applications, and infrastructure components essential to global business operations
Work with Business functions to define Functional Cyber BCP – manual workaround processes to sustain operations without IT dependence during a cyber crisis
Conduct Business Impact Analyses (BIA) and Application Impact Analyses (AIA) to prioritise recovery efforts and allocate resources
Monitor, measure, analyse, and evaluate ITCM conformance with organisational policies and industry standards; address nonconformities
Risk Management
Perform periodic risk assessments covering critical processes, applications, and infrastructure identified in BIA/AIA exercises
Define appropriate RPO (Recovery Point Objective) and RTO (Recovery Time Objective) thresholds in collaboration with business and functional teams
Implement risk mitigation strategies; stay current on emerging threats and adjust continuity plans accordingly
Conduct periodic reviews and tests of IT Continuity Plans; report findings to management with actionable improvement recommendations
Plan Testing & Maintenance
Coordinate and conduct regular DR drills, tabletop exercises, and full failover tests to validate plan effectiveness
Document test results, identify gaps, and update DRP, AIA, and ARP documents accordingly
Validate that all enterprise sites and applications have current, tested DRP and AIA documentation per defined priority tiers
Ensure IT DR sustainability plans are well-defined, documented, executed, and meet defined recovery standards
Incident Response & Crisis Management
Lead IT response during emergencies, coordinating cross-functional efforts to minimise downtime and restore services
Collaborate with incident response teams to contain and mitigate security breaches, cyber-attacks, and other disruptions
Communicate proactively with senior management and stakeholders during crisis situations, providing regular status updates
TISAX & Compliance
Support TISAX certification for critical manufacturing plants and engineering R&D locations
Assist IT Service Owners and Plant/Site IT managers in implementing TISAX requirements within their services and locations
Coordinate with external audit firms for TISAX external assessments and label achievement
Maintain compliance with ISO 22301, NIST 800-53, ISO 27001, SOX, PCI, and GDPR as applicable
Policy Development
Establish and maintain IT continuity policies, standards, and procedures aligned to industry best practices and regulatory requirements
Conduct internal assessments and coordinate internal/external audits at planned intervals
Training, Awareness & Reporting
Design and deliver training programmes to educate IT staff on their roles in continuity events
Foster a culture of preparedness and resilience across the global IT organisation
Report IT Continuity KPIs and metrics to senior IT and enterprise leadership on a periodic basis
Proactively communicate remediation status to internal and enterprise leadership
Qualifications & Experience
Education
Bachelor’s degree in Information Technology, Computer Science, or a related discipline (Master’s preferred)
Experience
10+ years of total IT experience; 5+ years in IT Business Continuity / Disaster Recovery for a global enterprise
~5 years implementing Business Continuity across a complex, multi-site IT organisation
~5 years managing Risk/Compliance programmes based on NIST, ISO 27001, SOX, PCI, or GDPR frameworks
~5 years in information security concepts: vulnerability assessments, incident response, enterprise security architecture and governance
Proven track record of conducting enterprise risk assessments and driving measurable remediation outcomes
Certifications (Preferred)
CISSP, CISA, ISO 22301 Lead Implementer/Auditor, or ISO 27001 Lead Implementer/Auditor
Key Skills
Technical
Deep understanding of IT infrastructure, systems architecture, cloud technologies, and enterprise data centre operations
Hands-on experience with BIA, AIA, DRP, and ARP document frameworks
Working knowledge of Microsoft 365 suite – Excel, Word, Visio, Project, PowerPoint
Familiarity with TISAX assessment criteria and automotive cybersecurity requirements (advantageous)
Leadership & Soft Skills
3 to 5 years managing customer-facing or extended cross-functional project teams
5+ years in PMO design, metrics management, and audit/compliance activities
Excellent analytical and problem-solving skills; ability to prioritise and decide under pressure
Strong communication and stakeholder management skills – able to engage from plant floor to C-suite
Ability to work independently in a fast-paced environment with tight deadlines and minimal supervision
Highly motivated, results-oriented, and an effective change agent capable of influencing across geographies
What We Offer
High-impact global role with direct visibility to senior IT and enterprise leadership
Opportunity to define and lead Garrett’s IT resilience strategy across 20+ countries
Exposure to TISAX, ISO 22301, NIST, and leading cybersecurity frameworks
Competitive compensation, professional development support, and certification sponsorship
Collaborative, inclusive work culture with global cross-functional exposure
