Buenos Aires, Argentina
hace 4 días

Job Description

The Third-Party Risk Management SME is an individual contributor role that is responsible for supporting the Data Protection and Data Privacy activities at K-C, providing functional direction to the data protection SME resources in India, and supporting the Information Risk Management program, including third-party risk.

Daily activities include performing vendor risk assessments, reviewing attestation documentation (e.g. SOC 2), and completing vendor / supplier security questionnaires, in addition to interacting with the engineers building and operating key systems, security engineering, and operations teams.

In support of the Information Risk Management program, the Third-Party Risk Management SME will be responsible for disseminating, documenting, and tracking risk identified with our vendors, partners, and supply chain dependencies.

In addition, this role will provide functional leadership and work direction for the global Data Protection SME team located in India, guiding the team in support of data protection / privacy initiatives at K-C.

Specific Responsibilities :

  • Understand data protection capabilities such as encryption, DLP, and data integrity
  • Define objectives, technical work, and timeline for developing data protection architectures, roadmaps, and requirements
  • Develop security architectures, roadmaps, and requirements for data protection systems
  • Build relationships with business, program, engineering, operations, security, and CISO teams to understand how to develop plans that effectively manage Verizon’s security risks
  • Build domain knowledge of Kimberly-Clark’s environment to understand long-term risk areas that will develop as the systems evolve
  • Provide thought leadership by participating in reviews of third-party contracts and collaborating with academic and research institutions
  • Review, recommend, and define mitigation strategies for vendor identified deficiencies; in accordance with K-C policies and standards
  • Ability to interact with clients, team members, and supply chain / IT business partners / support personnel
  • Experience with interpreting security control, auditing, or attestations requirements
  • Aptitude to vet, respond, and articulate contractual related cyber risk
  • Ability to provide work direction and functional leadership to a remote team
  • Strong analytical and creative problem-solving skills
  • Basic Qualifications :

  • Bachelor’s Degree and / or 8+ years information technology, risk, or audit experience
  • Minimum 4 years of client-facing work experience on security / risk frameworks (ISO, NIST, etc.)
  • 5+ years’ experience in conducting risk assessments
  • Experience in data protection security and its functional components
  • Strong written and oral communication skills
  • Ability to effectively interact globally with all areas and levels of the organization, such as legal, marketing, business operations
  • Ability to manage multiple high-visibility, complex technical projects
  • Knowledge with the security domains of security engineering, IAM, asset / network / data security, software development, assessment, testing, and operations
  • Experience building security architectures, roadmaps, and program requirements.
  • Familiarity with defining cybersecurity policies
  • Accentuators :

  • ISACA Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Systems Security Professional (CISSP)
  • Data Protection / Privacy (i.e., GDPR, CCPA, etc.) knowledge
  • Experience in : Project management, Functional team leadership, Remote teams, Matrix organization, Enterprise Governance Risk & Compliance (eGRC), F.
  • A.I.R. Framework, Vendor risk assessments

    Kimberly-Clark and its well-known global brands are an indispensable part of life for people in more than 150 countries.

    Every day, 1.3 billion people - nearly a quarter of the world's population - trust K-C brands and the solutions they provide to enhance their health, hygiene, and well-being.

    With brands such as Kleenex, Scott, Huggies, Pull-Ups, Kotex, and Depend, Kimberly-Clark holds No.1 or No. 2 share positions in more than 80 countries.

    With a 135-year history of innovation, we believe in recruiting the best people and putting them in the right jobs so that they can do their best work.

    If fresh thinking and a passion to win inspire you, come Unleash Your Power at Kimberly-Clark.

    Kimberly-Clark is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation, gender identity or any other characteristic protected by law.

    The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification.

    Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

    K-C requires that an employee have authorization to work in the country in which the role is based. In the event an applicant does not have current work authorization, K-C will determine, in its sole discretion, whether to sponsor an individual for work authorization.

    However, based on immigration requirements, not all roles are suitable for sponsorship. This position is subject to drug and alcohol testing, including pre-employment testing.

    Reportar esta oferta

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación