Job Summary:
">
We are seeking a skilled Cybersecurity Specialist to join our team. The ideal candidate will have experience in risk management, compliance, and information security.
">
About the Role:
">
The Cybersecurity Specialist will be responsible for supporting the Information Security Officer in upholding governance, risk management, and compliance standards across digital and IT environments.
">
This role is essential in maintaining the cybersecurity integrity of our IT and OT systems, as well as sensitive data by ensuring adherence to established global security governance.
">
Key Responsibilities:
">
">
1. Ensure alignment with Global Cybersecurity Framework
">
2. Enforce policies, procedures, guidelines, etc
">
3. Through use of Deviation Action Treatment Plans (DTAPs) define risk, remediation plans, and compensation controls to reduce risk
">
4. Conducts Security Risk Assessments using Group Tools and Processes (Applications, Data & 3rd Parties)
">
5. Review cybersecurity risks for Vendor, Suppliers, Contractors, and other Third-Parties
">
6. Lead the process of critical digital asset compliance including stakeholder communications, reporting, review of evidence, and maintaining compliance score
">
7. Identify privacy and other regulatory requirements including AI evaluations
">
8. Assess compliance with Global Cybersecurity Framework throughout the data and application lifecycle (CDA's, Global ERP systems)
">
9. Cyber Crisis Management Response & Incidents
">
10. Assist in cyber crisis management response and/or cyber crisis simulations
">
11. Coordinates cybersecurity incident response with identified stakeholders to define and minimize impact
">
12. Supports Digital and IT Audits
">
13. Support internal and external audits by providing responses and evidence related to cybersecurity controls
">
14. Leads Penetration Testing Efforts (IT & OT)
">
15. Lead rules of engagement, scope of work assessments, and logistics for penetration testing engagements
">
16. Act as Cybersecurity expert within the organization promoting cybersecurity concepts, issues, and processes
">
">
Requirements:
">
">
* Minimum 4 years of experience in Cyber Security, risk management, and/or compliance
">
* Certifications in information security and/or cyber security like CISSP, CISM, CGRC
">
* Demonstrate understanding of risk management, IT controls, and related information security standards
">
* Knowledge of security control frameworks and standards such as SOC2, ISO 27001, NIST, etc
">
* Experience securing cloud-based environments
">
* Experience with regulatory requirements - GDPR, PCI, Medical, FDA, DOT, etc
">
* Excellent written and verbal communication skills
">
* English C1
">
">
Benefits:
">
We offer a diverse and inclusive workplace that embraces the diversity of our employees, customers, patients, community stakeholders, and cultures across the world.
">
We welcome and consider applications from all qualified applicants, regardless of their background.
">
We strongly believe a diverse organization opens up opportunities for people to express their talent, both individually and collectively, and it helps foster our ability to innovate.
">
At our organization, we value our differences and strive to create an engaging environment in a changing world.
"]],