Welcome to Nippon Gases | NIPPON GASES
Senior Governance Risk & Compliance Manager
Job description
Nippon Gases is one of the leading companies in the industrial and medical gases business in Europe. We service more than 150,000 customers and have a diversified involvement in broad industries such as healthcare, food, manufacturing, metallurgy, chemical products, electronics, and energy.
We are present in more than 13 countries, counting with a solid combination of onsite/piping, merchant, and package lines of business across key industrial zones.
At Nippon Gases, we continuously invest in cybersecurity. As a Senior Governance Risk and Compliance Specialist, you will be part of the Nippon Gases Information Security Department reporting to the Governance Risk and Compliance Manager, and you will have the opportunity to work on the continuous improvement of our cybersecurity.
Job Description:
- Develop, enhance, operationalize enterprise-level security, risk policies, processes, and controls to mitigate risk and comply with applicable laws and regulations.
- Assess the potential impact of cybersecurity risks on critical business processes and functions.
- Perform activities to monitor and assess security, risk, and privacy controls.
- Collaborate with business leaders to strike a balance between security requirements and the need for business agility, innovation, and growth.
- Lead and contribute to M&A due diligence activities in relation to information security.
- Work closely with the business departments (Legal, Engineering, Sales, Support, Operations, etc.) to develop and monitor policies and standards in compliance with applicable privacy policies & regulations.
- Collaborate with key stakeholders to review projects, business-critical systems, and related data to ensure compliance, perform, and advise on business impact assessments.
- Perform security reviews and identify gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
- Perform and evaluate vendor management reviews.
- Own and be responsible for answering information security questionnaires from customers and official instances.
- Coordinate, conduct, and function as contact for all internal and external audits regarding information security & compliance.
- Identify, track, monitor, and report on information security controls.
- Perform cyber risk trend analysis and reporting.
- Responsible for the regulatory training of employees and contractors.
Job RequirementsEducation and Professional Experience:- Bachelor's degree in information security, computer science, or equivalent.
- Official certifications like CISSP, CISM, CRIS, CISA, ITILv4 will be valuable.
- At least 5 years of related professional experience in governance risk and compliance.
- Expertise in M&A due diligence activities in the information security area.
- Proven work experience as a GRC manager or similar role.
- Experience in ISO 27001, NIST CSF, IEC/ISA 62443, SOC I/II.
- Strong background in conducting Business Impact Analysis (BIA).
- Experience working in project management, implementing, and coordinating cybersecurity action plans.
- Handling of security risk management methods.
- Fluent in English.
- Strong conceptual thinking, troubleshooting, and analytical skills.
- Highly organized, detail-oriented, and completeness.
- Proactive and eager to learn.
About UsNippon Gases aims to create social value through innovative gas solutions that increase industrial productivity, enhance human well-being, and contribute to a more sustainable future. Making life better through gas technology.
What can you expect from us?We are an industrial company in which safety and integrity come first. We bet on the talent of each of our employees, creating opportunities for development and learning, as well as offering an environment of personal conciliation. Our employees are key to achieving high customer satisfaction. We have a high commitment to society and respect for the environment.
Equal Opportunity Employment PolicyNippon Gases promotes an inclusive work environment free of any type of discrimination and harassment. We believe that the diversity of talent strengthens and increases our success.