Cbsm - Third Party Cyber Risk Analyst
hace 2 meses
Job Requirements
**Key Responsibilities**:
Management and completion of Chubb inherent risk ranking of ALL suppliers in compliance with the Global Third-Party Cyber Risk policy. This includes liaising with and working alongside the Global Third-Party team as well as Business relationship Owners.
Risk assessments of Cloud providers
Identification, tracking and management of issues and control deficiencies relating to Third Parties, including liaising with the business owners to support remediation activities.
Maintenance and management of the Information Security Third Party Inventory and the Issues Register in co-ordination with the Enterprise Risk Management strategy and approach.
Performance and execution of Third Party Cyber Risk assessments initiated by business.
Where applicable, executing, management and oversight of performing Third Party assessments meeting applicable SLA’s.
Reviewing information security policies, standards, guidelines and baselines in place and being developed.
Contributing towards Security Awareness Training and helping the business to improve understanding of and reduce Third Party risk to acceptable levels.
Assist with internal security reporting, including steering committees and updates for senior management.
Management of Third-Party related information security projects.
Develop and enhance the programme, progressing currently identified and future improvements to make the function more effective and efficient.
Provide support to the TPCR Regional Lead and engage with the wider information Security team.
Work Experience
- High level of business acumen, preferably in a regulated/financial industry
- Five + years of information security experience with a focus on risk assessments and controls, governance, risk management, program development, compliance, and/or auditing. Previous experience of supporting or managing a Third-Party risk assessment programme is essential.
- Expert-level knowledge of both the business and technical aspects of information security, including third party security risk and European data protection regulation.
- Demonstrated ability to understand and analyse complex business processes and technologies to make sound recommendations to non-technical constituents
- eGRC system or similar system administration experience a plus
- Experience reviewing, and redlining agreements is a plus
- Ability to multitask and manage competing priorities
- Excellent time management and organizational skills
- Excellent interpersonal, customer service and conflict management skills
- Excellent written and verbal communication skills
- Proficient use of personal computers and Microsoft Office Suite
-
Third Party Risk Advisor
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.** The Third Party Risk Advisor is responsible for third-party information risk management related to suppliers and other third parties. The individual creates and leads an effective program to improve suppliers' information security maturity...
-
Third Party Risk Advisor
hace 2 semanas
Monterrey, Nuevo León, México Nearshore Cyber A tiempo completoLocation: Monterrey or Matamoros, Mexico: Applications from persons not living in Mexico will NOT be accepted.The Third Party Risk Advisor is responsible for third-party information risk management related to suppliers and other third parties. The individual creates and leads an effective program to improve suppliers' information security maturity to protect...
-
Information Security Risk Assessor
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Monterrey or Matamoros, Mexico**: **Applications from persons not living in Mexico will NOT be accepted.** Information Security Risk Assessors report continuously on the state of risk, providing visibility and helping business leaders and risk managers understand where risk resides and where improvements must be made to protect the business....
-
Vulnerability Analyst
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Anywhere in Mexico (WFH/Remote)**:** Applications from persons not living in Mexico will NOT be accepted.** The successful Vulnerability Analyst takes an active lead to inform, advise, and partner with technology leadership and business units to secure the company. The analyst will regularly report on the state of vulnerabilities including...
-
Cyber Security
hace 3 semanas
Monterrey, México British American Tobacco A tiempo completo**BAT IS LOOKING FOR A PROFESSIONAL IN CYBER SECURITY** **ROLE SUMMARY** **What are the key objectives and expectations from this role?** Maintain a working and strategic relationship with a designated DRBU, in the area of Cyber Security. Be the partner for the DRBU LT to quickly address the needs of the markets (like risk assessments, trainings,...
-
Data Protection Analyst
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.** The Data Protection Analyst is responsible for securing and monitoring all data accessed, transmitted and stored throughout the business and third parties. The Data Protection Analyst is involved throughout the entire data...
-
Vulnerability Analyst
hace 2 semanas
Monterrey, Nuevo León, México Nearshore Cyber A tiempo completoLocation: Anywhere in Mexico (WFH/Remote): Applications from persons not living in Mexico will NOT be accepted.The successful Vulnerability Analyst takes an active lead to inform, advise, and partner with technology leadership and business units to secure the company.The analyst will regularly report on the state of vulnerabilities including criticality,...
-
Information Security Analyst
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.** The Information Security Analyst is responsible for activities relating to monitoring and responding to security events. The analyst receives, researches, triages, and documents all security events and alerts as they are received,...
-
Cyber Defence and Cyber Security Operations
hace 2 semanas
Monterrey, Nuevo León, México British American Tobacco A tiempo completoBAT is evolving at pace - truly like no other organisation.To achieve the ambition, we have set for ourselves, we are looking for colleagues who are ready to live our ethos every day. Come be a part of this journeyBAT MEXICO IS LOOKING FOR A CYBER DEFENCE AND CYBER SECURITY OPERATIONS-POSTURE AND ASSURANCE ANALYSTSENIORITY LEVEL:ManagerialFUNCTION:DBSSALARY...
-
Cyber Defence and Cyber Security Operations
hace 3 semanas
Monterrey, México British American Tobacco A tiempo completo**BAT MEXICO IS LOOKING FOR A** CYBER DEFENCE AND CYBER SECURITY OPERATIONS-POSTURE AND ASSURANCE **SENIORITY LEVEL**:Managerial **FUNCTION**: DBS **SALARY RANGE**:Excellent benefits + market leading bonus **LOCATION**:Monterrey, Mexico **ROLE POSITIONING AND OBJECTIVES** Posture and Assurance team member is responsible operationalizing Security...
-
Sr Information Security Analyst
hace 3 semanas
Monterrey, México iKraft Solutions A tiempo completoThe **Sr Information Security Analyst **will be a key member Information Security team. This person will work closely with cross functional teams to ensure appropriate physical, administrative and technical controls are operating effectively to ensure the confidentiality, integrity and available information resources. Strategize on the development and...
-
Manager Ecm- Third Party Finished Goods
hace 5 días
Monterrey, México BAXTER A tiempo completo**This is where you save and sustain lives** At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients. Baxter's products and therapies are found in...
-
Regional Cyber Underwriter Intern
hace 3 semanas
Monterrey, México Chubb INA Holdings Inc. A tiempo completoJob Requirements Role Purpose Purpose is to have a specialized Cyber & Tech resource in the regional team to support the field with risk analysis and referrals. Work Experience Role Responsibilities Work in complex MAD accounts together with regional Cyber manager Assist in high touch middle market and new SME products development Support monitoring of...
-
Manager Ecm- Third Party Finished Goods
hace 2 semanas
Monterrey, Nuevo León, México BAXTER A tiempo completoThis is where you save and sustain livesAt Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients.Baxter's products and therapies are found in almost...
-
Information Security Analyst
hace 2 semanas
Monterrey, Nuevo León, México Nearshore Cyber A tiempo completoLocation: Monterrey or Matamoros, Mexico: Applications from persons not living in Mexico will NOT be accepted.The Information Security Analyst is responsible for activities relating to monitoring and responding to security events. The analyst receives, researches, triages, and documents all security events and alerts as they are received, supporting multiple...
-
Global Information Security Risk and Compliance
hace 3 semanas
Monterrey, México Nemak A tiempo completoObjective As part of the Information Security organization, develop a strategic program to ensure compliance of regulatory requirements to support the organization's resilience. Through a process of Risk Management and the systematic evaluation of potential threats, the organization will be able to meet the law, regulations and contractual requirements and...
-
Cbsm / IT Security Grc Manager
hace 2 meses
Monterrey, México Chubb INA Holdings Inc. A tiempo completoWork Experience **Core IT Sec GRC Domains**: **Governance & Oversight**: Oversee current programs (I.e. SOX, Risk assessments, risk profiles, iso, global and or regional strategic projects/tasks, etc). Provide oversight and coordination of control executions to ensure IT policies and procedures are being followed. Coordinate periodic metrics follow up and...
-
IT Compliance Analyst
hace 5 días
Monterrey, México Nearshore Cyber A tiempo completo**Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.** **Position Summary** **Essential Job Duties** - Serve on a distributed compliance team responsible for reviewing and documenting where security and technology controls are adequate or need improvement. Work closely with compliance and...
-
IT Compliance Analyst
hace 2 semanas
Monterrey, Nuevo León, México Nearshore Cyber A tiempo completoLocation: Monterrey or Matamoros, Mexico: Applications from persons not living in Mexico will NOT be accepted.Position SummaryEssential Job Duties Serve on a distributed compliance team responsible for reviewing and documenting where security and technology controls are adequate or need improvement. Work closely with compliance and security leadership,...
-
Project Coordinator/analyst, Supply Chain Risk
hace 3 semanas
Monterrey, México Polaris Inc. A tiempo completoAt Polaris Inc., we have fun doing what we love by driving change and innovation. We empower employees to take on challenging assignments and roles with an elevated level of responsibility in our agile working environment. Our people make us who we are, and we create incredible products and experiences that empower us to THINK OUTSIDE. JOB SUMMARY: - The...
