**Join a team recognized for leadership, innovation and diversity**:
Building and managing IT standard work to establish a governance model and management operating system for cyber safety compliance efforts.
You will coordinate working sessions with IT process and IT service owners to drive continuous improvement, issues remediation and effective management of risk.
You will establish standard artifacts to be leveraged for cyber safety functions in support of their efforts.
**Key Responsabilities**
- Execute Risk Assessment Framework to assess key strategic/high risk suppliers and drive risk mitigation efforts
- Conduct regular Risk Assessments/audits on key strategic/high risk suppliers (incl.
SOC2 Type2 review, Vulnerability scan reports etc..) and partner with stakeholders to drive issue/risk remediation to closure on time
- Monitor high risk supplier via tools and other mechanism for risk exposure and impact
- Provide guidance & training on Hon IT & Security policies, standards and processes to suppliers or service managing suppliers
- Manage service level catalogue to be included in SOW/MSA's to outline Hon IT & Security policies, standards and processes & regulatory compliance requirements
- Conduct gap analysis ensuring contractual obligations alignment with Hon IT & Security policies, standards and processes (HON standard SLA's) & regulatory compliance requirements
- Facilitate service owners & IT Operations team in configuring SLA's/SLO's in Service Now ITSLM during supplier onboarding/offboarding and support SLA compliance reporting;
age project documentation for process engagements to make sure required PMO documentation is consistently updated per PMO standards.
Working sessions with asset owners to identify adherence and gaps to the IT process areas.
**Key Responsibilities**:
**YOU MUST HAVE**:
- Bachelor's degree
- Global role exposure and able to translate supply chain security to stakeholders
- Minimum 7 years of professional experience in the area of IT/ Security
- Must work well independently but also drive cross-functional teaming successfully to avoid bottlenecks
**WE VALUE**
- Certifications such as CISA, CISSP, CISM, COBIT, etc.
are highly encouraged.
- Significant experience in information security domain including strong understanding of Information Security best practices, Industry control frameworks, processes and solutions
**Additional Information**:
- **
JOB ID**:HRD155309
- **
Category**:Information Technology
- **
Location**:Av.
Salvador Nava Martinez 3125,San Luis Potosi,SAN LUIS POTOSI,78260,Mexico
- Exempt