Third Party Cyber Security Expert (all genders)
Sei unter den ersten Bewerbenden.
Merck Gruppe
Frankfurt
EUR 60.000 - 80.000
Sei unter den ersten Bewerbenden.
Vor 3 Tagen
Jobbeschreibung
Your role:
The Third Party Cyber Security Expert position is an integral member of the company's Group Cyber Security organization. In this role, you will drive development and evolution of Third Party Cyber Security Risk Management policies, standards, and procedures to protect the confidentiality, integrity, and availability across the company's supplier landscape. As a member of the global Cyber Security Organization, your main responsibilities are:
- Develop and maintain Third Party Cyber Security Risk Management capabilities including methodology, supporting processes, and tools to identify and mitigate Cyber Security risks.
- Address and drive assessments of the company's suppliers and maintain oversight of critical suppliers and their relation to the company.
- Collaborate closely with stakeholders to address and mitigate gaps in Risk Management processes.
- Maintain contractual addendum to address cyber security requirements in supplier contracts and provide guidance and support in RfP and due diligence during negotiation phases including cyber security-related contract reviews.
- Work closely with stakeholders such as procurement and legal to incorporate Cyber Security requirements into supplier contracts.
- Consult businesses in answering requests related to the company's Cyber Security posture.
- Support the development of the Cyber Security Governance Policy and Control Framework in compliance with industry standards, regulatory requirements, and best practices.
Who you are:
- Bachelor’s degree or equivalent in computer science, engineering, intelligence studies, or related field.
- Minimum of 5 years’ experience in Third Party Security Risk Management or equivalent security-related areas.
- Strong analytical and interpersonal communication skills, including the ability to communicate effectively and build consensus with teams across organizational lines.
- Demonstrated experience across multiple cyber security domains (e.g., IT, OT, IoT, and Digital Products).
- 1 or more industry-recognized security professional certifications are considered an advantage (e.g., CISA, CISM, CISSP, CCSP).
- Professional with a positive attitude and capable of contributing to a dynamic and team-oriented culture.
- Fluent in English; additional language skills (e.g., German) are considered an advantage.
Department: EF-SQ-SCB Security Business Enablement
Job Evaluation: AT / Expert 3
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Finde schneller
einen besseren Job
einen besseren Job
