Senior Manager, Digital Supply Chain Risk & Resilience

This is a fully remote position, open to applicants in Connecticut, +1 more state.

📋 Description

• Develop and implement a comprehensive supplier cyber risk and resilience management program aimed at identifying, assessing, and addressing cyber and resilience risks throughout RTX’s supply chain.

• Identify, deploy, and uphold processes, methodologies, tools, and technologies that facilitate supplier cyber risk and resilience management.

• Plan and execute supplier cyber and resilience assessments, recognize potential risks, document these assessments in standardized report formats, and assist in the execution of risk mitigation strategies.

• Document and oversee findings and remediation plans in RTX’s official source of record throughout the complete lifecycle of findings.

• Aid in the assessment of supplier compliance with RTX cybersecurity policies, industry standards, and governmental regulations (such as NIST, CMMC, DFARS).

• Cultivate strong relationships with suppliers to encourage best practices in cybersecurity and promote ongoing improvements in supplier cyber risk management.

• Lead initiatives to manage supplier-related cybersecurity incidents, including conducting root cause analyses and implementing corrective measures.

• Create and sustain key performance indicators (KPIs) and dashboards to evaluate the effectiveness of the supplier cyber risk management program.

• Provide consistent updates on program status to the Director of Digital Risk.

• Drive awareness initiatives for suppliers and internal teams to improve understanding of cybersecurity risks and requirements.

• Collaborate with RTX supply chain, product security, and other relevant departments to ensure alignment of supplier cyber risk management strategies with corporate goals.

• Work alongside cross-functional teams, including IT, Cyber Defense, Internal Audit, Legal, and Compliance, to maintain a unified and integrated approach to digital risk management.

• Collaborate with other Governance, Risk, and Compliance (GRC) functions to promote the development and enforcement of risk-based policies and controls to protect digital assets and ensure adherence to industry standards and regulations.

• Stay informed about industry trends, regulatory updates, and best practices concerning digital risk.

• Willingness to occasionally travel onsite in Dallas, TX or Farmington, CT.

⛳️ Requirements

• A University Degree in a relevant field along with a minimum of 10 years of pertinent experience, or an Advanced Degree in a related field with at least 7 years of relevant experience.

• Prior relevant work experience must encompass digital risk management, cybersecurity, or a related area.

• Experience in a global, heavily regulated industry is required.

• 3+ years of experience in a risk advisory or consulting firm is preferred.

• Strong comprehension of digital risk management frameworks, standards, and best practices (e.g., NIST 800-53, NIST 800-171, ISO 27001, CMMC).

• A proven history of successfully establishing or transforming supplier cyber risk management programs within large, intricate organizations.

• Demonstrated capability to lead cross-functional teams and manage complex projects in a matrixed environment.

• Familiarity with supply chain processes and product security requirements is essential.

• Relevant certifications such as CISSP, CISM, CRISC, or similar are advantageous.

• Exceptional analytical, problem-solving, and decision-making abilities.

• Highly skilled in Microsoft Office applications with experience in preparing presentations and presenting to executive leadership.

🏝️ Benefits

• Parental (including paternal) leave

• Flexible work schedules

• Achievement awards

• Educational assistance

• Child/adult backup care

• Medical benefits

• Dental benefits

• Vision benefits

• Life insurance

• Short-term disability benefits

• Long-term disability benefits

• 401(k) match

• Flexible spending accounts

• Employee assistance program

• Employee Scholar Program

• Paid time off

• Holidays