Minimum Requirements:
1. Relevant experience in a supply chain security assurance related role.
2. Experience with IT audit/risk management, with examples of managing technology risk and IT compliance standards within an organisation.
3. Knowledge of information security principles & best practices and experience in managing information security risk and controls in a regulatory environment.
4. Knowledge of documenting processes and key controls in association with supplier and organisational processes.
5. Good level knowledge of standards and frameworks relating to information security risk management processes, frameworks, procedures and business continuity (eg NIST, ISO, Privacy Laws).
6. Experience of working in an Agile environment.
7. Experience in the reduction of supply chain security risks to acceptable levels.
8. Work experience in increasing supply chain security assurance penetration.
9. Work experience in reduction of supplier information security incidents.
10. Knowledge of compliance status against regulations including data privacy and UNECE Regulation No. 155 - cyber security and cyber security management system.
Good to have:
1. Preferred certifications: CISA, CISM, ISO27001 lead auditor or CISSP.
2. Experience of managing suppliers against and/or knowledge of requirements of UNECE Regulation No. 155 - Cyber security and cyber security management system.
3. Knowledge and experience in managing information security in manufacturing and automation.
4. Knowledge and experience in information security auditing techniques.
5. Global business experience.
#J-18808-Ljbffr