Junior Cybersecurity Compliance Analyst

POSITION SUMMARY

The Junior Cybersecurity Compliance Analyst role is responsible for supply risk cyber security workstream to de-risk the supply chain with the guidance of Sr Analyst. You will execute the cyber security risk strategy for direct and indirect supply chain and manage the adoption and upkeep of ISO standards within an organization. This role ensures that company processes, policies, and practices align with relevant ISO standards. Key responsibilities include conducting internal audits, developing and implementing compliance strategies, delivering training, and addressing any identified gaps or issues. Collaborates closely with management and various departments to ensure adherence to industry standards and regulatory requirements, thereby strengthening the organization's overall compliance and risk management framework.

RESPONSIBILITIES

• Lead the deployment of annual supplier cyber security assessment strategy.
• Survey the supply base to uncover cyber security risk, understand supplier business continuity plans and preparedness
• Prioritize suppliers based on their cyber risk profile, business criticality, and potential impact on our operations.
• Research industry-wide activity and best practices
• Lead engagements with direct and indirect teams to support supplier compliance and cyber risk
• Support Third Party Risk Management team in remediation efforts for direct and indirect suppliers
• Support development and incorporation of cyber security risk metrics into supply chain digital tools
• Collaborate cross functionally with Cyber Third-Party Risk Management, OGC, IT Purchasing to ensure alignment and drive risk management priorities
• Prepare and communicate to cross functional executive leadership the status of project health, timing and delivery to the 2024 KPIs via L3, L2 and L1 level governance meetings.
• Plan and execute internal audits of company systems to ensure adherence to relevant ISO standards and the company's established guidelines and procedures. Additionally, perform ISO 27001 audits to evaluate the effectiveness of information security controls and practices within client organizations.
• Collaborates with management to develop strategies and processes for Governance, Risk Management, and Compliance, tailored to client requirements and aligned with industry standards, including but not limited to ISO 27001.
• Research, develop, and maintain training programs, operating procedures, and process analyses in accordance with laws, regulations, and industry standards, including but not limited to ISO 27001.
• Offers recommendations for addressing identified process gaps and implements corrective and preventive actions.
• Examine and assess documentation, policies, procedures, risk assessments, and records to verify compliance with ISO 27001 standards.

QUALIFICATIONS

• Candidate must be a degree holder in Computer Science, Computer Engineering, Information Technology or equivalent qualifications
• 3-5+ years experience in Supply Chain and upkeep of ISO standards within an organization
• Understanding of broader supply chain landscape
• Proven analytical and problem-solving skills, with ability to interpret complex data sets
• Strong knowledge with Information Security Management System (ISMS)
• Strong knowledge on Risk Management based on ISO 27001
• Audit experience with ISO 27001
• Desire to work in a fast paced, collaborative environment
• Organization, project management and planning skills deadline driven
• Ability to comprehend strategic direction and support consistent implementation
• Resourcefulness, attention to detail and comfort offering solutions for clarity where there is ambiguity
• Ability to diffuse work conflict without bringing it to the attention of the leader using strong interpersonal skills
• Self-motivated with a strategic and growth mindset ready for disruption
• Proficiency crafting creative, inspiring messaging that communicates complex concepts simply
• Ability to build positive relationships within Global Organization and Cross-Functional; has organizational and political intelligence
• Strongly developed written and verbal communication skills

PHYSICAL & ENVIRONMENTAL DEMANDS

• N/A

TIME TRAVEL REQUIRED

• 10%

The successful candidate will embrace Vertiv's Core Principals & Behaviors to help execute our Strategic Priorities.

OUR CORE PRINCIPALS: Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.

OUR STRATEGIC PRIORITIES

• Customer Focus
• Operational Excellence
• High-Performance Culture
• Innovation
• Financial Strength

OUR BEHAVIORS

• Own It
• Act With Urgency
• Foster a Customer-First Mindset
• Think Big and Execute
• Lead by Example
• Drive Continuous Improvement
• Learn and Seek Out Development