Vacancy expired!
Job Description
Are You Ready to Make It Happen at Mondelz International?Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.The Senior Security Risk Manager works with the information security team as a competent and experienced information security and compliance leader. You will assess information security risks in line with internal policies and external best practices and determine requirements for securing Mondelz International information and IT assets.How you will contribute- Responsible for the effective execution of the Risk Management Program defined by the Head of GRC.
- Provide oversight over all Risk & Compliance activities.
- Provide oversight of Risk & Compliance personnel.
- Responsible for benchmarking Risk & Compliance activities, reviewing and calibrating them annually.
- Continuously review metrics and KPIs used in the reporting of Risk & Compliance activities.
- Lead Risk & Compliance Projects as Project Lead.
- Chair Risk Acceptance & Exception monthly meeting.
- Review and approve risk exceptions. Escalate as needed to GRC Director/CISO.
- Co-chair monthly GRC SteerCo meeting with CISO.
- Provide reporting of Risk & Compliance activities to the Director of GRC and CISO.
- Participate in monthly meetings with BISLs/TISLs.
- Ensure that all relevant SOPs are documented and that there's a process to keep them current.
- Manage Risk Manager(s).
- Manage 3rd Party Vendor Risk Manager(s).
- Manage Compliance Manager(s).
- Information security, compliance and risk management
- Understanding security solutions and their applicability to Mondelz International
- Developing security strategies, awareness campaigns, policies/standards, and governance
- Communicating effectively with technical specialists, leaders and peers
- Commercially astute
- Leadership and people management skills
- Develop security standards and policies
- Advise technical teams when developing relevant procedures or have operational security questions, and review and consult them on compliant and effective use of common tools.
- Keep business stakeholders apprised of the overall security and compliance roadmap.
- Provide training on information security to appropriate teams
- Develop security strategies, architectures, and roadmaps across processes and technologies.
- Bachelor's Degree
- CISSP required
- CISA, and CISM are preferred but not required
- 10+ years of total work experience
- 5+ years of Risk and Compliance experience
- 2+ years of Management experience
- Vendor management, 3rd party experience
- Demonstrated analytical skillset
- Full understanding of the NIST requirements required
- Demonstrated analytical skillset and capabilities
- 25% travel - 1 week a month expected
- ID: #49541929
- State: New Jersey North jersey 07097 North jersey USA
- City: North jersey
- Salary: USD TBD TBD
- Job type: Permanent
- Showed: 2023-03-25
- Deadline: 2023-05-23
- Category: Security