Information Security and Controls Officer - Vice President

Join a team where your expertise in risk management and information security helps shape best practices and drive continuous improvement. You will have the opportunity to make a meaningful impact, develop your skills, and contribute to a global organization that values professional growth.

As an Information Security and Controls Officer on the Supplier Issue Management team, you play a key role in maintaining robust risk management and supplier oversight. You will collaborate with internal stakeholders and critical suppliers to ensure our processes meet organizational standards, fostering a culture of quality, collaboration, and continuous learning.

• Review assessment findings for accuracy and compliance with organizational guidance
• Validate closure evidence provided by suppliers, including policies, procedures, and documentation
• Engage with internal stakeholders to address issue management queries
• Provide consultative guidance to business partners for resolving findings through action plans or understanding risk implications
• Consult with critical and high-risk suppliers to expedite risk remediation and provide progress transparency
• Liaise with business partners to ensure timely remediation of action plans and risk acceptances
• Manage the issue lifecycle, including identification, creation, modification, extension, and closure validation
• Identify opportunities for process improvements within supplier management
• Support internal education and share best practices with colleagues
• Maintain a thorough understanding of the supplier risk assessment process
• Communicate effectively with senior management across business groups

• Experience in information security, risk management, supplier management, information technology, or cyber security
• Understanding of supplier information technology and operational risk, as well as information technology control policies
• Excellent verbal communication skills
• Experience delivering written and verbal presentations to senior stakeholders
• Ability to collaborate across multiple business groups
• Attention to detail in reviewing documentation and evidence
• Commitment to maintaining high standards of quality and compliance
• Ability to manage multiple tasks and priorities
• Proficiency in identifying and implementing process improvements
• Strong problem-solving skills
• Ability to work effectively in a team-oriented environment

• Certification in Cybersecurity, Information Systems Audit, or Risk and Information Systems Control
• Experience supporting internal education and sharing best practices
• Familiarity with supplier risk assessment processes
• Experience validating closure evidence for compliance
• Ability to engage with diverse stakeholders
• Knowledge of global supplier management standards
• Demonstrated commitment to professional development and continuous learning