Manager, Data Governance

Join a Company That Puts People First

At Aveanna, we're proud to foster a workplace culture that celebrates diversity, encourages connection, and supports our team members every step of the way. Here's what sets us apart:

Award-Winning Culture

• Ranked the #1 company to work for in Georgia in 2024 by U.S. News & World Report.

Employee Connection & Support

• Aveanna Connection Groups: Employee-led groups where shared identities and experiences create spaces for connection, collaboration, and support.
• Aveanna Social Circles: Join groups based on your interests, like books, music, or movies, to build camaraderie and lasting friendships.
• Aveanna Employee Relief Fund: A resource to help our team members through unexpected hardships, because we're stronger together.

Inclusive Learning Environment

• We believe in growing together. Our inclusive learning sessions are open to all employees, fostering collaboration and shared success.

Commitment to Community

• Every year, we dedicate a day to giving back through our Annual Service Day, making a meaningful impact in the communities we serve.

Job Overview

The Manager of Data Governance & Enterprise Cyber Risk is responsible for implementing and managing the company's enterprise data governance framework, policies, and tools to ensure the protection, quality, and compliance of data assets. This first-level management role bridges technical and business domains and will lead a small team of data governance and security analysts while collaborating across IT, information security, compliance, and business units.

Key Responsibilities

• Develop, implement, and maintain enterprise data governance policies, standards, and frameworks aligned with regulatory and internal compliance requirements (e.g., HIPAA, SOX, CCPA CPRA).
• Establish data ownership, stewardship, and accountability models across data domains.
• Drive data management, data cataloguing, and data lineage documentation using platforms such as Microsoft Purview.
• Manage the lifecycle of enterprise data, ensuring data protection, data classification, retention, and disposal policies are enforced.
• Lead the deployment, configuration, and operation of data discovery and DLP tools, including but not limited to Microsoft Purview, Varonis, Symantec DLP, Forcepoint, and Digital Guardian.
• Oversee sensitive data discovery, tagging, and classification across cloud and on-prem environments.
• Develop and maintain DLP policies and incident response workflows; partner with cybersecurity team to mitigate data exposure risks.
• Produce dashboards and reporting for DLP performance, incidents, and metrics.
• Integrate data governance practices with the enterprise cyber risk management (ECRM) program to ensure data risks are identified, assessed, and mitigated at the organizational level.
• Support the third-party risk management program (3PO) by establishing governance and DLP standards for vendor data access,