Job Title: Sr Advanced Cyb Sec Archt/Engr
Responsibilities:
.Execute Risk Assessment Framework to assess key strategic/high risk suppliers and drive risk mitigation efforts
.Conduct regular Risk Assessments/audits on key strategic/high risk suppliers (incl. SOC2 Type2 review, Vulnerability scan reports etc..) and partner with stakeholders to drive issue/risk remediation to closure on time
.Monitor high risk supplier via tools and other mechanism for risk exposure and impact
.Provide guidance & training on Hon IT & Security policies, standards and processes to suppliers or service managing suppliers
.Manage service level catalogue to be included in SOW/MSA’s to outline Hon IT & Security policies, standards and processes & regulatory compliance requirements
.Conduct gap analysis ensuring contractual obligations alignment with Hon IT & Security policies, standards and processes (HON standard SLA’s) & regulatory compliance requirements
.Facilitate service owners & IT Operations team in configuring SLA’s/SLO’s in Service Now ITSLM during supplier onboarding/offboarding and support SLA compliance reporting
.Ensure standard supplier KPIs/Performance Measurements framework is executed to enable Service Owners to monitor supplier’s performance consistently (Eg: SLA exceptions)
.Mange Supplier Executive scorecard enabling service owners to drive risk informed decision and action
.Define Governance responsibilities for suppliers exercised in an organization
.Partner with procurement/Strategic Sourcing to establish and implement Quarterly Business Reviews (QBR’s) for critical suppliers.
.Ensure compliance with regulatory and contractual obligations by reviewing SLAs during renewal/new SOW and provide inputs to procurement and service owners before a contract gets signed.
.Establish and deploy annual supplier governance awareness training for suppliers.
.Provide technical security requirements in support of the advancement and currency of Supplier Security Policies, Standards
.Technical writer experience in establishing Supplier Governance related documents (Policies, Standards, Processes, SOP’s etc)
.Intermediate knowledge of IT security industry security/compliance/governance frameworks (example: NIST 800-53, ISO 27001/2, COBIT, ISO22301 etc…)
YOU MUST HAVE
Bachelor’s degree
Global role exposure and able to translate supply chain security to stakeholders
Minimum 7 years of professional experience in the area of IT/ Security
Must work well independently but also drive cross-functional teaming successfully to avoid bottlenecks
We VALUE
Certifications such as CISA, CISSP, CISM, COBIT, etc. are highly encouraged.
Significant experience in information security domain including strong understanding of Information Security best practices, Industry control frameworks, processes and solutions
HGS2021
Job Description About BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of...
Apply For This JobJob Description Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world...
Apply For This JobJob Description Scope Blue Yonder is seeking a Sr. Manager in Tools Engineering and Operations Dept with in SOC. The...
Apply For This JobDESCRIPTION Job summaryJob summaryAmazon has built a global reputation for being the most customer-centric company, a company that customers from...
Apply For This JobJob Description Hi, Please find below details of a good job opportunity at Noida, we are urgently seeking to fill...
Apply For This JobJob Description Would you like to innovate with the latest energy technology Do you enjoy being part of a successful...
Apply For This Job