Information Security Senior Analyst (Sr Cybersecurity Compliance Analyst)

POSITION SUMMARY

The Senior Cybersecurity Compliance Analyst role is responsible for supply risk cyber security workstream takes a proactive approach to de-risk the supply chain. You will lead, develop and execute the cyber security risk strategy for direct and indirect supply chain and manage the adoption and upkeep of ISO standards within an organization. This role ensures that company processes, policies, and practices align with relevant ISO standards. Key responsibilities include conducting internal audits, developing and implementing compliance strategies, delivering training, and addressing any identified gaps or issues. The Lead ISO Compliance collaborates closely with management and various departments to ensure adherence to industry standards and regulatory requirements, thereby strengthening the organization’s overall compliance and risk management framework.

RESPONSIBILITIES

• Lead the deployment of annual supplier cyber security assessment strategy. 
• Survey the supply base to uncover cyber security risk, understand supplier business continuity plans and preparedness 
• Prioritize suppliers based on their cyber risk profile, business criticality, and potential impact on our operations.
• Research industry-wide activity and best practices
• Lead engagements with direct and indirect teams to support supplier compliance and cyber risk 
• Support Third Party Risk Management team in remediation efforts for direct and indirect suppliers 
• Support development and incorporation of cyber security risk metrics into supply chain digital tools 
• Collaborate cross functionally with Cyber Third-Party Risk Management, OGC, IT Purchasing to ensure alignment and drive risk management priorities 
• Prepare and communicate to cross functional executive leadership the status of project health, timing and delivery to the 2024 KPIs via L3, L2 and L1 level governance meetings. 
• Plan and execute internal audits of company systems to ensure adherence to relevant ISO standards and the company's established guidelines and procedures. Additionally, perform ISO 27001 audits to evaluate the effectiveness of information security controls and practices within client organizations.
• Collaborates with management to develop strategies and processes for Governance, Risk Management, and Compliance, tailored to client requirements and aligned with industry standards, including but not limited to ISO 27001.
• Research, develop, and maintain training programs, operating procedures, and process analyses in accordance with laws, regulations, and industry standards, including but not limited to ISO 27001.
• Offers recommendations for addressing identified process gaps and implements corrective and preventive actions.
• Examine and assess documentation, policies, procedures, risk assessments, and records to verify compliance with ISO 27001 standards.

QUALIFICATIONS

• Candidate must be a degree holder in Computer Science, Computer Engineering, Information Technology or equivalent qualifications 
• 5-8+ years’ experience in Supply Chain and upkeep of ISO standards within an organization
• Understanding of broader supply chain landscape 
• Proven analytical and problem-solving skills, with ability to interpret complex data sets
• Excellent communication and stakeholder engagement skill
• Strong knowledge with Information Security Management System (ISMS)
• Strong knowledge on Risk Management based on ISO 27001
• Audit experience with ISO 27001
• Has excellent & effective written and oral communication skills
• A highly professional and proactive team player with strong collaborative skills.
• Desire to work in a fast paced, collaborative environment
• Organization, project management and planning skills – deadline driven
• Ability to comprehend strategic direction and support consistent implementation
• Strong emotional intelligence
• Resourcefulness, attention to detail and comfort offering solutions for clarity where there is ambiguity
• Ability to diffuse work conflict without bringing it to the attention of the leader using strong interpersonal skills
• Self-motivated with a strategic and growth mindset ready for disruption
• Proficiency crafting creative, inspiring messaging that communicates complex concepts simply
• Ability to build positive relationships within Global Organization and Cross-Functional; has organizational and political intelligence
• Strongly developed written and verbal communication skills
• Excellent problem solving and analytical skill set

PHYSICAL & ENVIRONMENTAL DEMANDS

• N/A

TIME TRAVEL REQUIRED

• 10%

The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.  

OUR CORE PRINCIPALS:  Safety.  Integrity. Respect.  Teamwork.  Diversity & Inclusion.

OUR STRATEGIC PRIORITIES

• Customer Focus
• Operational Excellence
• High-Performance Culture
• Innovation
• Financial Strength

OUR BEHAVIORS

• Own It
• Act With Urgency
• Foster a Customer-First Mindset
• Think Big and Execute
• Lead by Example
• Drive Continuous Improvement
• Learn and Seek Out Development

At Vertiv, we’re on a mission to empower the people that will power the future. From a simple swipe to life-changing medicines, from push notifications to generative AI. We design, manufacture, and service the products and solutions that keep the world connected.  With $6.9 billion in revenue, a strong customer base and global reach spanning nearly 70 countries, we are uniquely positioned to deliver greater value to our customers and create new opportunities for our people. 

Vertiv is an Equal Opportunity/Affirmative Action employer. We promote equal opportunities for all with respect to hiring, terms of employment, mobility, training, compensation, and occupational health, without discrimination as to age, race, color, religion, creed, sex, pregnancy status (including childbirth, breastfeeding, or related medical conditions), marital status, sexual orientation, gender identity / expression (including transgender status or sexual stereotypes), genetic information, citizenship status, national origin, protected veteran status, political affiliation, or disability. If you have a disability and are having difficulty accessing or using this website to apply for a position, you can request help by sending an email to help.join@vertivco.com. If you are interested in applying or learning more about this role, please visit the company’s career page located on Vertiv.com/Careers