The Manager, Cybersecurity Strategy, Risk & Awareness, will lead the distributed team in driving Emerson's Cyber Strategy, Risk and Awareness programs. The ideal candidate for this position is a proven leader with vision, problem solver and integrator of people and processes, as well as an effective internal consultant. The selected candidate will facilitate the maintenance and development of the cybersecurity strategy on behalf of the office of the Chief Information Security Officer. This highly skilled and experienced leader will oversee data-driven information security risk analysis efforts and promote a culture of security throughout the organization through training and awareness. The manager leads a diverse, dedicated team of ~10 based in North America and Asia. If you are ready to expand your professional experiences and grow professionally with a thriving organization, we invite you to become a valued member of our team!
IN THIS ROLE, YOUR RESPONSIBILITIES WILL BE:
Provide support, performance expectations and innovation opportunities for high-performing team of analysts. Develop and implement a robust cybersecurity strategy that aligns with the company’s goals, target maturity objectives and risk mitigation plans Deliver engaging cybersecurity awareness training that enable good security behavior for ~65,000 workers globally Aggregate and track security risks across various business units, security domains and asset categories. Train analysts to perform qualitative risk assessments/analysis on various security related issues and develop actionable reports to be distributed to collaborators. Support the management of Emerson’s Enterprise Cyber Risk Register. Collaborate with various departments across the organization to deliver a collaborative and cohesive approach to cybersecurity Present risk assessment reports and proposals to senior management. Continually improve risk assessment programs and questionnaires to aid in the identification and mitigation of security risks. Maintain and manage the established risk management framework to stay aligned with leading industry frameworks. Assess and recommend policies, standards, procedures, and controls to assure the confidentiality, integrity, and availability of the information technology environment. Play key supporting role in various security Governance, Risk and Compliance initiatives (i.e. policy & standards development, ISO27001 and etc.). Identify and document specific security issues, propose resolution options, and interpret matters from the perspective of involved partners. Drive oversight and monitoring of risk mitigation and coordination of policy and controls with the Risk Management function to ensure that other collaborators are taking effective remediation steps. Lead and manage the Cybersecurity Third Party Risk Management program that identifies and manages the cyber risks associated with third parties providing services to Emerson. Facilitate security governance committees with key executive and business collaborators Prepare cybersecurity updates and materials for the Board of Directors and select sub-committees of the Board of Directors Additional responsibilities may include leading process improvement activities, participating in information security assessment special projects and other assessment related activities.WHO YOU ARE: You articulate credible pictures and visions of possibilities that will create sustainable value. You follow through on commitments and make sure others do the same. You persist in accomplishing objectives despite obstacles and setbacks. You contribute to a work climate where differences are valued and supported.
FOR THIS ROLE, YOU WILL NEED:
Bachelor’s degree in Business, Computer Science, Information Security, Risk Management, or related field (or appropriate experience). 5+ years of experience in Cyber Security, Risk and Awareness? Leadership skills and experience leading the performance of contributors Must possess excellent oral and written communication skills and the ability to communicate in both technical and business terms. Ability to simultaneously prioritize multiple projects, adjust to changing priorities while multitasking effectively. Critical thinker, self-directed with demonstrable ability to collaborate and influence change Must possess the ability to develop presentations and deliver them to senior management Authorized to work in the United States without sponsorships now and in the future.PREFERRED QUALIFICATIONS THAT SET YOU APART:
Professional certifications in Information Security, Risk Management and/or Compliance preferred (e.g., Security+, CISSP, CISA, CISM, CRISC, etc.).OUR OFFER TO YOU:
We recognize the importance of employee wellbeing and know that to do your best you must have flexible, competitive benefit plans to meet you and your family’s physical, mental, financial, and social needs. We provide a variety of medical insurance plans, with dental and vision coverage. Employee Assistance Program, 401(k), tuition reimbursement, employee resource groups, recognition, and much more. Our culture prioritizes work-life balance and offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave.
At Emerson, we are committed to fostering a culture where every employee is valued and respected for their unique experiences and perspectives. We believe a diverse and inclusive work environment contributes to the rich exchange of ideas and diversity of thoughts, that inspire innovation and brings the best solutions to our customers.
The philosophy is fundamental to living our company’s values and our responsibility to leave the world in a better place. Learn more about our Culture & Values and about Diversity, Equity, & Inclusion at Emerson.
Our training programs and initiatives focus on end-to end development, from onboarding through senior leadership. We provide a wide range of development opportunities, including face-to-face and virtual training, mentorship, and coaching, project management, and on-the-job training.
#LI-BA1
#LI-HYBRID