Cyber Manager – Third Party Risk

This is a fully remote position, open to applicants in India.

📋 Description

• Conduct comprehensive cyber security evaluations on external parties (e.g., suppliers, partners) in a consistent and timely manner.

• Document findings and work collaboratively with business stakeholders and the Cyber Risk team to ensure that any identified risks are addressed.

• Support the onboarding process of suppliers by executing swift cyber security evaluations and providing guidance on potential risk exposure.

• Serve as a Subject Matter Expert (SME) to ensure that appropriate cyber security measures are integrated into agreements with third parties.

• Assist in gathering information necessary to respond to Maersk customer inquiries regarding cyber security.

• Develop documentation, reports, and dashboards for diverse audiences to aid in decision-making.

• Cultivate strong relationships with key stakeholders and teams throughout Maersk.

• Promote a culture of awareness and understanding of third-party cyber security risks across Maersk.

• Emphasize continuous improvement of processes, solutions, and professional practices within the team.

⛳️ Requirements

• 8-12 years of experience in IT/Cyber security audit and risk management.

• Experience in cyber security assurance within a global organization, ideally in third-party assurance or vendor risk management roles.

• A risk-based and pragmatic approach to security practices.

• Proven understanding of digital-native and emerging technologies.

• Extensive knowledge of cyber security standards (e.g., NIST, ISO27001) and their practical application and implementation.

• Familiarity with Governance, Risk, and Compliance (GRC) tools and cyber security monitoring tools (e.g., Archer, OneTrust, BitSight, etc.) as well as task management tools (e.g., Jira).

• Cyber Security Certifications (e.g., CISSP, CISM, CISA) are preferable.

• Demonstrated ability to work efficiently and prioritize effectively in a dynamic environment.

• Exceptional written and verbal communication skills, capable of engaging both technical and non-technical stakeholders.

• Strong stakeholder management and interpersonal/influencing abilities.

• Excellent organizational, time management, problem-solving skills, and attention to detail.

• Resilient, proactive attitude with the ability to collaborate within a team to meet deadlines.

🏝️ Benefits

• Opportunities for career development.

• Broad understanding of global business activities.

• Strong professional networking opportunities.

• Chances to expand knowledge and strengthen both technical and professional foundations.

• Empowerment and ownership in creating new working methodologies.

• Commitment to diversity and inclusion.