Cyber Security Risk Manager (m/f/d)

ABOUT US

At BASF Digital Hub Madrid we develop innovative digital solutions for BASF, create new exciting customer experiences and business growth, and drive efficiencies in processes, helping to strengthen BASF´s position as the digital leader in the chemical industry. We believe the right path is through creativity, trial and error and great people working and learning together. Become part of our team and develop the future with us - in a global team that embraces diversity and equal opportunities.

JOIN THE TEAM

 The global Cyber Security organization has the task of protecting BASF's IT and OT systems from malicious attacks and ensuring information security. It reduces the expected threat level with strategic and operational activities. With dedicated projects, the maturity of cybersecurity in the entire organization is significantly increased. 
It aims to secure the digital transformation in a sustainable way while supporting customers and stakeholders as partners. The overarching goal is to enable and support the business by empowering employees to work in a secure way without unnecessary barriers and by raising awareness on information protection.  

WHAT YOU CAN EXPECT

We are seeking an experienced Cyber Security Risk Manager to join our organization. As the Cyber Security Risk Manager, you will be responsible for development, implementation, and maintenance of our cyber security risk management activities.

Key Responsibilities:
You will be a part of our Cyber Governance, Risk and Compliance Team which manages the Cyber Security Framework for the whole BASF Group. One major part of that is to develop and implement a risk management tools, policies, and procedures in line with ISO 27001 and other relevant standards. You’re core responsibilities will be:

• Identify, assess, and prioritize risks to BASF’s information assets and support the process to ensure appropriate cyber security controls are in place to mitigate those risks
• Aggregate operational risks and translate asset-specific risks to generic risk scenarios on enterprise level to support senior management reporting and strategic as well as tactical decision-making
• Support the definition of group-wide cyber security governance regulations based on generic BASF risk landscape
• Work closely with cross-functional teams to support compliance of risk management processes with ISMS according to ISO 27001 and other relevant regulations
• Facilitate operational risk assessments, threat modeling, and vulnerability assessments to support identification of areas of risk within the organization's systems and infrastructure
• Collaborate with stakeholders to maintain a risk register and associated risk treatment plans
• Monitor and report on the effectiveness of risk management controls and support the reporting of significant risks to senior management
• Provide guidance and support to the organization on risk management best practices, including the implementation of new processes and controls, in accordance with ISO 27001
• Responsible for sections of our Cyber Security Governance Framework and participation in ISMS Audits

WHAT YOU OFFER

• Bachelor's degree in Computer Science, Information Technology, or a related field
• Experience with developing, implementing, and maintaining an ISMS based on ISO 27001 or other relevant standards
• Profound experience in cyber security, particularly in cyber security risk management
• Strong understanding of risk management principles and practices, especially in the field of risk aggregation as well as definition and evaluation of generic risks on enterprise level
• Experience with risk assessments, threat modeling, and vulnerability assessments
• Knowledge of relevant laws and regulations related to cyber security
• Excellent communication and interpersonal skills, with the ability to work effectively with cross-functional teams
• Relevant certifications such as CISSP, CISM, CRISC are a plus

If you are a motivated and experienced Cyber Security Risk Manager with a deep understanding of ISMS, we encourage you to apply for this exciting opportunity.
 

WHAT WE OFFER

•  A secure work environment because your health, safety and wellbeing is always our top priority.
• Flexible work schedule and Home-office options, so that you can balance your working life and private life.
• Learning and development opportunities
• 23 holiday days per year
• 5 additional days (readjustment)
• 2 cultural days
• A collaborative, trustful and innovative work environment
• Being part of an international team and work in global projects
• Relocation assistance to Madrid provided

At BASF, the chemistry is right 

Because we are counting on innovative solutions, on sustainable actions, and on connected thinking. And on you. Become a part of our formula for success and develop the future with us - in a global team that embraces diversity and equal opportunities irrespective of gender, age, origin, sexual orientation, disability or belief. 

HOW TO REACH US

If you're interested in the position or know someone who might be and need support on how to take next steps, please send an email to maria.alvarez@basf.com

Diversity is our greatest strength!

Become a part of our winning formula for success and develop the future with us -- in a global team that embraces inclusion and equal opportunities irrespective of gender, age, origin, sexual orientation, disability or belief.