Siemens Gamesa

A Snapshot of Your Day

We are looking for a cybersecurity professional who is energized about safeguarding our organization’s cyber posture by utilizing your skills to identify and manage cybersecurity risks relating to supplier engagements.

The Cybersecurity Supplier Assessor will provide a key role assessing the control practices and posture of new and existing Third Parties and make recommendations that help to improve business decisions and transform the cybersecurity landscape of Siemens Energy and our customers.

How You’ll Make an Impact

• Conduct detailed assessments of cybersecurity practices and 3rd party controls. Analyze assessment findings to identify risks and gaps in security posture.
• Collaborate with key stakeholders to develop and implement improvement plans.
• Understand and translate cybersecurity legal clauses and terms within supplier contracts. Lead and support required negotiations of those terms with procurement and/or legal.
• Keep abreast of cybersecurity trends and emerging threats to continuously improve assessment methodologies. Understand industry standard processes and support benchmarking of 3rd party risk management services, tools, etc.
• Make a direct impact on the organization's cybersecurity posture by ensuring 3rd party suppliers meet the highest security standards.

What You Bring

• University degree from Faculty with a preference for computer science, data science, information technology, legal fields, or equivalent technology/business management related degree.
• Fluency in English.
• Familiarity with Information Security Risk, methodologies, frameworks such as ISO 27001, NIST, COBIT and industry best practices to help ensure a secure cloud computing environment.
• Keen eye for detail and passion for excellence Deep understanding of cybersecurity principles, exceptional analytical abilities, and familiarity with standard methodologies regarding security of networks, services, products, operations, etc.
• Good communication and presentation skills. Passionate about listening and collaborating with different functions like procurement, legal and suppliers.
• Ability to communication with all levels of the organization up through and including our executive management team.
• Experience in the end-to-end management of supplier assessments, integration of application security standard processes, secure coding practices, etc. into remediation measures, and ensuring risk measures are properly documented, understood, and handled.
• Energized to use innovative methods and ideas that drive supplier resilience methodologies. Desire to get results and continuously focus on improving processes and services. Availability for international business trip (at least 10% of the time)
• Nice to have CRISC, CISA, CCSK, CCAK, CSX-
• Practitioner, ISO 27001 Lead Auditor, PM or comparable certifications will be considered a plus Previous work experience of 3 to 5 years as an Information Security auditor

About the Team

You will be part of a global team that provides cybersecurity support services for all Siemens Energy Divisions and Functions as well as all seven Siemens Energy hubs. You will also join our companywide cybersecurity community of more than 130 members.

Who is Siemens Energy?

At Siemens Energy, we are more than just an energy technology company. We meet the growing energy demand across 90+ countries while ensuring our climate is protected. With ~100,000 dedicated employees, we not only generate electricity for over 16% of the global community, but we’re also using our technology to help protect people and the environment.

Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.

 Find out how you can make a difference at Siemens Energy: https://www.siemens-energy.com/employeevideo

Our Commitment to Diversity

Lucky for us, we are not all the same. Through diversity we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, gender identity, sexual orientation or disability. We energize society, all of society, and we do not discriminate based on our differences.