Responsibilities:
.Execute Risk Assessment Framework to assess key strategic/high risk suppliers and drive risk mitigation efforts
.Conduct regular Risk Assessments/audits on key strategic/high risk suppliers (incl. SOC2 Type2 review, Vulnerability scan reports etc..) and partner with stakeholders to drive issue/risk remediation to closure on time
.Monitor high risk supplier via tools and other mechanism for risk exposure and impact
.Provide guidance & training on Hon IT & Security policies, standards and processes to suppliers or service managing suppliers
.Manage service level catalogue to be included in SOW/MSA’s to outline Hon IT & Security policies, standards and processes & regulatory compliance requirements
.Conduct gap analysis ensuring contractual obligations alignment with Hon IT & Security policies, standards and processes (HON standard SLA’s) & regulatory compliance requirements
.Facilitate service owners & IT Operations team in configuring SLA’s/SLO’s in Service Now ITSLM during supplier onboarding/offboarding and support SLA compliance reporting
.Ensure standard supplier KPIs/Performance Measurements framework is executed to enable Service Owners to monitor supplier’s performance consistently (Eg: SLA exceptions)
.Mange Supplier Executive scorecard enabling service owners to drive risk informed decision and action
.Define Governance responsibilities for suppliers exercised in an organization
.Partner with procurement/Strategic Sourcing to establish and implement Quarterly Business Reviews (QBR’s) for critical suppliers.
.Ensure compliance with regulatory and contractual obligations by reviewing SLAs during renewal/new SOW and provide inputs to procurement and service owners before a contract gets signed.
.Establish and deploy annual supplier governance awareness training for suppliers.
.Provide technical security requirements in support of the advancement and currency of Supplier Security Policies, Standards
.Technical writer experience in establishing Supplier Governance related documents (Policies, Standards, Processes, SOP’s etc)
.Intermediate knowledge of IT security industry security/compliance/governance frameworks (example: NIST 800-53, ISO 27001/2, COBIT, ISO22301 etc…)
YOU MUST HAVE
.Bachelor’s degree
.Global role exposure and able to translate supply chain security to stakeholders
.Minimum 7 years of professional experience in the area of IT/ Security
.Must work well independently but also drive cross-functional teaming successfully to avoid bottlenecks
We VALUE
.Certifications such as CISA, CISSP, CISM, COBIT, etc. are highly encouraged.
.Significant experience in information security domain including strong understanding of Information Security best practices, Industry control frameworks, processes and solutions
Our world is transforming, and PTC is leading the way. Our software brings the physical and digital worlds together, enabling...
Apply For This JobJob Description What impact will you make Every day, your work will make an impact that matters, while you thrive...
Apply For This JobInnovate to solve the world’s most important challenges Job Title: Sr Advanced Cyb Sec Archt/Engr Responsibilities:.Execute Risk Assessment Framework to...
Apply For This JobJob Description Responsibilities : Plan, develop and implement org-level audit strategies with the objective of minimizing the Information security risks,...
Apply For This JobJob Description Bachelor s degree in Computer Science Computer Engineering Information Technology or relevant field 12 15 years experience designing...
Apply For This JobInformation Risk Management Specialist Experience: 9+ years Job Summary: Perform internal IT security risk assessment over services provided to Clients....
Apply For This Job