IS Security and Compliance Specialist
Take your next career step at ABB with a global team that is energizing the transformation of society and industry to achieve a more productive, sustainable future. At ABB, we have the clear goal of driving diversity and inclusion across all dimensions: gender, LGBTQ+, abilities, ethnicity and generations. Together, we are embarking on a journey where each and every one of us, individually and collectively, welcomes and celebrates individual differences.
In this role you will be responsible for defining, establishing and maintaining ABB Corporate IS Security framework and processes. Based on industry reference framework, ensuring adaptation of Security Policies & Standards. Establishing the service to measure key security metrics across GBS, Businesses, Corp Functions & critical security projects based on GBS Information Security defined service KPIs & Dashboards. This role reports to the Global IS Security Governance Manager. This role is graded as Global grade 11.Your responsibilities
Take your next career step at ABB with a global team that is energizing the transformation of society and industry to achieve a more productive, sustainable future. At ABB, we have the clear goal of driving diversity and inclusion across all dimensions: gender, LGBTQ+, abilities, ethnicity and generations. Together, we are embarking on a journey where each and every one of us, individually and collectively, welcomes and celebrates individual differences.
In this role you will be responsible for defining, establishing and maintaining ABB Corporate IS Security framework and processes. Based on industry reference framework, ensuring adaptation of Security Policies & Standards. Establishing the service to measure key security metrics across GBS, Businesses, Corp Functions & critical security projects based on GBS Information Security defined service KPIs & Dashboards. This role reports to the Global IS Security Governance Manager. This role is graded as Global grade 11.Your responsibilities
- Being responsible to identify industry standard Security Framework appropriate for ABB. Based on identified framework, ensuring alignment to Information Security Policies & Standards & control framework. Establishing an ongoing a process for constant adaptation to external reference framework. Enabling ABB Group to redefine, upgrade the state of Security by adapting to current framework to reduce security risk exposure.
- Identifying industry standard Maturity model for security. Driving the assessment of the as-is maturity. Defining the maturity levels closely working with Corp IS Security design & roadmap lead and producing maturity plan in alignment with GRC, Enterprise architecture team. This sets the target maturity level in Security to be reached at ABB.
- Ensuring implementation of ‘State of Security@ABB’ with the defined Security KPIs & Dashboards. Automation of data collection for the metrics. Validate the defined metrics against implemented. Ensure continuous maintenance and updates. Ensuring up to date documentation of tool, process and definition of metrics.
- Defining the concept of linking Framework to Policies & Standards to relevant metrics. Implementing the concept to work towards the overall ‘State of Security’ view which enables risk-based decision making across Corporate, GBS and Businesses.
- Conducting performance reviews of Security services and Projects, consolidating qualitative outcomes from reviews and quantitative aspects from metrics. Ensuring quality of reporting for different cadence meetings with different stakeholders.
- Monitoring or consulting and giving advice to ensure that Security Policies and Standards comply with chosen Security Framework
Your background
- Bachelor’s or master’s degree in Information Technology, Computer Science, Software Engineering or a related qualification, and/or demonstrated capability through past employment experience
- 10+ years experience in Information Systems – Security, Application, Infrastructure
- Very good experience working in information security services – endpoint, network, security operations or security assessments
- Superior experience in Data, Analytics and data-driven compliance will be an added advantage
- Good knowledge of Security Framework and Maturity model
- Very good experience in building strong relationships with internal and external stakeholders
- Ability to translate business requirements and issues to a functionally understandable form and documentation
More about us
We look forward to receiving your application (documents submitted in English are appreciated). If you want to discover more about ABB, take another look at our website www.abb.com. HQ Talent Acquisition Team ABB Asea Brown Boveri Ltd
Source link
