Site Cyber Security Manager Europe / all genders / Part-Fulltime

Your Role:
As the Site Cyber Security Manager (SCSM) for our sites in Europe, you will play a pivotal role within the Merck Electronics (EL) Cyber Security organization. Reporting to the sector Cyber Security function, you will be the primary contact for all Cyber Security matters across our EL sites. Your mission is to oversee and implement robust Cyber Security strategies that effectively mitigate cyber risks, ensuring compliance with global standards and local regulations.

Job Responsibilities:

1. Single Point of Contact (SPOC): Support projects and operations as an IT/OT Cyber Security SPOC to safeguard critical infrastructure and industrial control systems as well as ensure integration of security measures within the lifecycle of business applications and products.
2. Advisory: Advise and support architecture and engineering staff in the implementation of Cyber Security measures.
3. Governance & Strategy Implementation: Drive the implementation of Merck's global and Electronics Cyber Security governance models, along with the Electronics Cyber Security strategy at the designated sites.
4. Cyber Security Master Plan: Develop and execute a comprehensive Cyber Security master plan for the respective sites, integrating global initiatives and local efforts to improve Cyber Security maturity and addressing Cyber Security risks.
5. Continuous Monitoring: Monitor and manage Cyber Security risks and vulnerabilities as well as provide support and on-call service for Cyber Security incident management.
6. Assessments & Audits: Conduct regular Cyber Security assessments to identify missing controls and evaluate the effectiveness of existing controls. Furthermore, support internal and external Cyber Security audits.
7. Reporting: Create and communicate regular status reports on Cyber Security risks, compliance, incidents, and KPIs to the site leadership as well as EL Cyber Security organization.
8. Compliance: Assist in the identification of local legal, regulatory, and contractual Cyber Security requirements and manage their integration into the Cyber Security control framework.
9. Collaboration: Coordinate with global, regional and local roles to enhance Cyber Security interfaces and practices. Furthermore, actively participate in Cyber Security meetings and events to facilitate information exchange and collaborative problem-solving.
10. Culture of Awareness: Promote a culture of Cyber Security awareness and continuous improvement.

Who you are:

• Minimum of 3-5 years of experience in Cyber Security, with a focus on Operational Technology (OT) and Information Technology (IT) environments.
• Familiarity with frameworks and standards such as NIST Cyber Security Framework (CSF), ISO/IEC 27000 series, IEC 62443, and ITIL.
• Excellent communication skills to influence others, and the ability to collaborate effectively across organizations.
• Willingness to travel up to 25% within Europe is required.
• GICSP, CSX-P or related Cyber Security certification(s).
• Understanding of specific Cyber Security challenges and regulatory requirements in the chemical and semiconductor industries, particularly within production facilities.