AI Governance Manager

We are seeking an experienced AI Governance Manager to Lead and scale our AI governance program. In this highly visible role, you will shape how the organization responsibly designs, implements, and monitors AI technologies, mitigating AI-specific risks, and enabling innovation in a secure and controlled environment.

This position offers opportunities to be involved in multiple initiatives under the guidance of Cybersecurity Risk Leadership. You will partner closely with the CISO, Legal, Compliance, Technology, and Enterprise Risk to define risk classifications for AI project intake, enable governance roles and responsibilities, maintain governance workflows, and ensure appropriate cybersecurity integration in AI initiatives. This role also establishes and manages the AI metrics, reporting structures, communication plans, and feedback loops that drive transparency and maturity of the AI program.
Responsibilities:

• Implement an AI governance framework to ensure responsible, ethical, and compliant use of AI in a highly regulated environment.

• Maintain governance processes and control libraries to address AI specific risks.

• Assist in enforcement of AI security standards aligned with enterprise policies and regulatory requirements (e.g., FFIEC, OCC, GLBA, GDPR, ISO 42001, NIST AI RMF).

• Maintain and manage escalation and approval channels for AI use, ensuring proper oversight based on AI risk level.

• Build strong partnerships across business units to ensure security is embedded from design through implementation in AI products and services.

• Monitor AI regulatory developments (NIST AI RMF, etc.) and assess the impact to business.

• Translate regulatory and industry requirements into actionable policies, controls, standards, and procedures.

• Conduct and oversee enterprise-wide AI risk assessments.

• Provide guidance on AI governance, compliance, and ethical AI adoption, mentor team members on best practices.

• Maintain an enterprise inventory of AI models, risks, controls, and exceptions.

• Define KPIs and dashboards to measure adoption, risk posture, and control effectiveness.

• Support audit and compliance activities by ensuring governance documentation and AI lifecycle artifacts remain complete and up to date.
   

Qualifications:

• Bachelor’s degree in computer science, cybersecurity, data science, or related field

• 7+ years of experience in cybersecurity or AI governance, program management, information security, or technology governance (or equivalent experience).

• Strong understanding of governance, risk and compliance concepts, including risk, controls, inventories, and how governance is communicated to key stakeholders.

• Experience with building or improving a governance or oversight program, including the foundational components to make the program most efficient and streamlined.

• Strong understanding of responsible/ethical AI principles, emerging regulatory requirements, and industry best practices.

• Experience operationalizing AI governance frameworks, policies, and lifecycle management processes.

• Proven ability to interpret and apply AI related regulatory and industry frameworks and the ability to translate requirements into actionable processes and controls.

• Experience working with auditors, regulators, and compliance teams.

• Familiarity with security frameworks (NIST, ISO 27001, CIS Controls).

• Strong communication skills and ability to engage with stakeholders at all levels.

• Ability to work independently in a fast-paced environment while fostering collaboration and creative problem-solving.

• Relevant certifications in AI governance, risk, or compliance are a plus.

OneMain Holdings, Inc. is an Equal Employment Opportunity (EEO) employer. Qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship status, color, creed, culture, disability, ethnicity, gender, gender identity or expression, genetic information or history, marital status, military status, national origin, nationality, pregnancy, race, religion, sex, sexual orientation, socioeconomic status, transgender or on any other basis protected by law.