BioSpace · 13 hours ago

Senior Lead - Cybersecurity Third Party Risk Management (Remote)

North Chicago, IL

Full-time

Remote

Senior Level

6+ years exp

Maximize your interview chances

BiotechnologyCommunities

Comp. & Benefits

Insider Connection @BioSpace

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Define, prioritize, coordinate, and execute activities related to Cybersecurity Third Party Risk Management lifecycle across the enterprise

Keep Cybersecurity Third Party Risk Management Program processes up to date; create additional processes when required in alignment to the strategic program methodology

Mobilize and coordinate Internal and External Key Stakeholders team members to perform Cybersecurity Third Party Risk Management lifecycle performance and risk workflow activity

Execute Third Party Evaluation, Risk Identification, Continuous Monitoring, Risk Remediation, and Rapid Response strategy plans aligned to KPI/KRI/KCI thresholds

Responsible for prioritization of Cybersecurity Third Party Risk Management governance and VIP support for Business Information Security Officers (BISOs) and Executives to increase the enterprise Third Party Risk security posture

Schedule program committee meeting activities and work with multiple cross-functional areas within AbbVie for Cybersecurity Third Party Risk Management program technology platform release plans

Build and manage a Communication and Change Management control for tactical and strategic enhancement initiatives to drive open dialogue, engagement, and continuous improvements

Work with Managed Security Service Provider (MSSP) and AbbVie to develop and maintain cohesive methodology for Cybersecurity Third Party Risk Management

Act as primary point of contact and author internal and external narratives and program communication

Develop and harmonize alternative evaluation and risk artifacts into the strategy and program; examples include SOC Reports, Security Certifications, Accessible Questionnaires, and Threat Intelligence

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityThird Party Risk ManagementProcess ManagementComplex Data AnalysisStakeholder EngagementStrategic Thinking

Required

Bachelor's Degree with 7 years experience; Master's Degree with 6 years experience; PhD with 2 years experience

Information Security Third Party Risk Management Experience

Experience leading complex process initiatives involving multiple global teams

Experience creating leadership and team level reporting based on complex data sets

Ability to think and act both strategically and tactically

Excellent written and verbal communication skills with the ability to clearly and concisely present both non-technical and complex technical information to a variety of audiences, including leadership and stakeholders

The ability to think clearly, analyze quantitatively, problem-solve, scope technical requirements and prioritize

Proven ability to make sound business judgment, influence without authority, and strong analytical thinking skills