Purpose Of Job:
The purpose of this role is to establish compliance with security controls through audits, establishment of KPIs, gathering and reporting on metrics, identifying risk, tracking maturity and recommending improvements for both efficiency and efficacy. Cover Governance, Risk and Compliance (GRC) aspects of the security program.
At Nouryon, our global team of Changemakers takes positive action every day, to reach higher collectively and individually. We create innovative and sustainable solutions for our customers to answer society's needs today and in the future
About the job (Job Responsibilities)
- Build, track and support compliance to various frameworks such as NIST, CSF, etc.
- Develop, track and support metrics and reports on KPIs, SLAs and other internal metrics.
- Track and support compliance with various findings
- Build, track and support a cyber security risk program
- Build, track and support a cyber security compliance program
- Develop policy, processes, procedures and guidelines
- Track and help improve the cyber security programs maturity
- Provide other support to the Office of the CISO
- Run the User Awareness Program
- Responsible for Penetration Testing program
We believe you bring (Education & Experience)
- Former role leading a team in audit, enterprise risk management (ERM), or compliance with knowledge of regulatory and industry requirements and standards.
- 3-5 years experience in working in enterprise environment
- Experience with multiple GRC tools such as Archer, SNOW GRC, etc.
- Preferred one or more of: CISSP, CRISC, CISA, CISM
- 1-3 years in information security
- Must have experience conducting/implementing/managing information systems audits. Must possess strong written and verbal communication skills. Proficiency with all Microsoft (MS) Office programs is necessary, including familiarity with SharePoint.
- Conducting and/or coordinating information security risk assessments for technology and security frameworks. Facilitating multiple stakeholders to agree on appropriate security solutions and verifying that security risks are mitigated appropriately.
- Verifying that required security controls are built into new products Performing deep dives on Information security-related processes and systems. Identifying system limitations that could lead to regulatory risks in new products and services and provide guidance for resolution and risk mitigation.
- Staying abreast of innovative business and technology trends in Information Security, risk, and controls and advising leadership on technology initiatives. Carrying out risk assessments and gap analysis of multi-networks and cloud environments using compliance standards and frameworks such as CSF and NIST.
- Creating, managing, and enforcing compliance requirements for business process and information systems and assisting in the development of Authority wide cybersecurity compliance program.
- Designing and/or implementing Information Security solutions in an enterprise environment. Leading initiatives for re-architecting and reengineering of security controls to enhance the security posture of the Authority. Strong knowledge of Vulnerability Management Remediation.
Please apply via our online recruitment system. We will not accept applications via e-mail. Once it's with us we will review to see if we have a match between your skills and the role! For more information about our hiring process, visit: nouryon.com/careers/how-we-hire/
We look forward to receiving your application!
We kindly ask our internal candidates to apply with your Nouryon email via Success Factors.
We're looking for tomorrow's Changemakers, today.
If you're looking for your next career move, apply today and join Nouryon's worldwide team of Changemakers in providing essential solutions that our customers use to manufacture everyday products such as personal care, cleaning, paints and coatings, agriculture and food, pharmaceuticals, and building products. Our employees are driven by the wish to make an impact and actively drive positive change. If that describes you, we will gladly make way for your ambitions. From day one we support you with your personal growth, through challenging positions and comprehensive learning and development opportunities, in a dynamic, international, diverse, and proactive working environment.
Visit our website and follow us on LinkedIn.
#WeAreNouryon #Changemakers