Information Security GRC Manager

Company: Givaudan
Location: Cincinnati
Posted on: May 28, 2023

Job Description:

Select how often (in days) to receive an alert: Join us and celebrate the beauty of human experience. Create for happier, healthier lives, with love for nature. Together, with kindness and humility, we deliver food innovations, craft inspired fragrances and develop beauty and wellbeing solutions that make people look and feel good. There's much to learn and many to learn from, with more than 16,800 employees around the world to explore ideas and ambitions with. Dive into varied, flexible, and stimulating environments. Meet empowered professionals to partner with, befriend, and stretch your skills alongside. Every day, your energy, your creativity, and your determination will shape our future, making a positive difference on billions of people. Every essence of you enriches our world. We are Givaudan. Human by nature. Information Security GRC Manager - your future role?As the Information Security Manager in Budapest, Dortmund, Paris or Sant Celoni, you will report to the CISO, you will lead the Governance, Risk, and Compliance (GRC) team for Information Security.This position is open in multiple locations.You will:Information Security GovernancePrepare and maintain ISO 27001 certificationCreate reporting framework for Information SecurityDefine and guide Information Security GRC StrategyOversee the Cyber security program governance processes including cyber security risk reporting (recommending new report formats, reporting technologies and collaborating with team members to build-out reports/dashboards), and governance committee(s) and board updatesManage Information Security StandardsOversee the development of cyber security standards, including incorporating industry practices and applicable compliance requirementsHelp use information security standards by the business and manage exceptionsDevelop a program to monitor compliance with cyber security standards and security rules of relevant cyber security and regulatory privacy requirementsEstablish a cyber security risk management program designed to identify, report, and respond to cyber security risks; lead annual enterprise cyber security risk assessmentManage the cyber risk evaluation and risk assessment processes.Consolidate Data analysis of important GRC risk information, including the cyber risk register, policy exceptions, audit findings and data security reviews.Third-party and Client Security assessmentsOversee and improve third-party information security risk management program to assess risks associated with the usage of third-parties/vendorsImprove client security assessments programInformation Security Assurance ProgramManage the governance of the Information security assurance programPlan and complete testing of security processes to identify deviation from expected performanceEnsure each identified deviance is treated as an Information Security RiskGRC Team ManagementDefine capabilities, and job roles recruit candidates, and lead a team of experts.Your professional profile includes:5 years working in a GRC information security role and similar information security disciplineExperience working with IT systems and IT operations.Experience in implementing and using GRC tools.Experience implementing and operating an ISMS in consideration of ISO27001Knowledge of information security risk management frameworks and compliance practices.Develop security guidelines based on best practices and industrystandardsexperienceUnderstanding of common security and privacy standards and regulations e.g. SOC 2, ISO27001/2, GDPR, CIS, and NISTDesired certification: CISSPBonus PaymentPrivate Medical InsurancePensionFurther company discountGivaudan is committed to equal opportunities. Therefore, we welcome applications regardless of cultural and social background, gender, age, religion or sexual identity.Multiple location: Budapest (Hungary), Dortmund (Germany), Paris (France), Sant Celoni (Spain)
At Givaudan, you contribute to delightful taste and scent experiences that touch people's lives.
You work within an inspiring teamwork culture - where you can thrive, collaborate and learn from other talented and passionate people across disciplines, regions and divisions.
Every essence of you enriches our world.
Givaudan is committed to equal opportunities. Therefore, we welcome applications regardless of cultural and social background, gender, age, religion or sexual identity. -
We also have a safe working environment, progressive working conditions and are certified as an equal pay employer.

Keywords: Givaudan, Cincinnati , Information Security GRC Manager, Executive , Cincinnati, Ohio