2 Risk Articulation Jobs

As the largest shipping and container logistics company in the world, Maersk is a $40bn organisation with over 85,000 employees, responsible for shipping approximately 20% of the world's container freight. Maersk is currently undergoing a significant transformation to become an integrated container shipping and logistics company, redefining its business practices. In the midst of unprecedented change, Maersk is focused on achieving sustainable growth by reimagining customer and partner engagement. Central to this transformation is the pivotal role of digitization and IT in facilitating these interactions. Join the Transport and Logistics IT team at Maersk as they redefine the possibilities of technology in driving growth. Joining Maersk T&L presents an exciting opportunity for career advancement within a global organization. As an Engineer in the Secure-by-Design Tooling team within the Cyber Organization, you will develop a comprehensive understanding of the company's global operations and the intricate IT infrastructure supporting transport and logistics. In this role, you will engage with key stakeholders at various management levels within Maersk, gaining exposure to diverse and challenging business issues. Collaborating across geographical and cultural boundaries will enable you to expand your professional network and take charge of your career development. Maersk is committed to providing opportunities for you to enhance your technical expertise and professional skills. The primary responsibility of the Cyber Security Manager in the Cyber Security Assurance (CSA) Team is to assess and report on the current state of security across Maersk. This includes conducting compliance assessments against Maersk's Cyber Security Standards and relevant global laws and regulations. You will play a crucial role in making recommendations to enhance control effectiveness and working closely with the Governance and Global Security teams to implement these improvements. Flexibility and adaptability are essential as you respond to evolving business requirements, including conducting ad-hoc assessments and coordinating activities within the team. Key Responsibilities: - Performing Internal Security Assessments and Reviews. - Reporting on compliance levels against security standards and regulations. - Managing remediation activities and audit findings. - Conducting configuration and documentation reviews. - Establishing and measuring meaningful security metrics. - Managing external audits and reporting on control effectiveness. - Promoting Cyber Security best practices and representing Cyber Security across all levels within Maersk. Qualifications: - Degree in computer sciences, information management, or related field; or relevant experience. - Information Security Certifications such as CISSP, CISM, or CISA. - Minimum 5 years of information security experience in a global or large business. - Broad IT knowledge including networks, architecture, and Cloud technologies. The successful candidate should possess strong communication and interpersonal skills, demonstrate the ability to work independently, prioritize effectively, and handle complex problem-solving scenarios. Attention to detail, excellent written skills, and the capacity to work under pressure are crucial. Additionally, the candidate should exhibit a high level of reliability, trustworthiness, and honesty. Primary Stakeholders: - Chief Information Security Officer (CISO). - Deputy CISO. - Cyber Security Officers (CSO). - Other Cyber Security Teams. Primary External Stakeholders: - Maersk's External Auditor. - Other audit entities engaged by Maersk. Maersk is committed to supporting candidates" needs for accommodations during the application and hiring process. For any special assistance or accommodation requirements, please contact us at accommodationrequests@maersk.com.,

As a highly skilled resource proficient in the Information Security domain, you will be a valuable addition to our Vendor and Client Security team within the Information Security Department. Your primary responsibilities will include: - Completing client security questionnaires, answering follow-up questions, and participating in client audits as requested by the business. - Conducting vendor security due diligence assessments to verify vendors" information security and privacy capabilities through risk assessment questionnaires, response analysis, and final assessment report creation. - Monitoring critical vendors continuously and collaborating with them on the remediation of identified vulnerabilities. - Partnering with business stakeholders to articulate risks clearly to both business and technology audiences. - Tracking remediation progress to address vulnerabilities identified by clients effectively. - Reviewing contracts and master service agreements to ensure the presence of appropriate security language. - Supporting the development, implementation, and maintenance of the Information Security program. - Participating in internal and external audits related to SOC2, ISO 27001/27701, etc. - Maintaining familiarity with Information Security policies to facilitate annual reviews and updates. - Performing general administrative duties as required to support Information Security operations. Key Requirements: - Minimum 3-5 years of experience in Information Security roles. - Bachelor's degree in a related field from an accredited college or university. - Proficient in English written and verbal communication. - Strong understanding and experience in Information Security program development, maintenance, and governance. - Excellent research skills. - Ability to plan and execute tasks with minimal oversight. - Proficient in multitasking and prioritizing tasks across various projects. - Strong time management and organizational skills. - Demonstrated personal integrity and commitment to delivering outstanding results. - Willingness to work flexible hours to support global business users. - Prior experience with ProcessUnity Vendor Risk Management Tool and Bitsight cybersecurity ratings practice is a plus. About Kroll: Kroll is a global valuation and corporate finance advisor specializing in complex valuation, disputes, investigations, M&A, restructuring, compliance, and regulatory consulting. Our professionals combine analytical skills, market insight, and independence to assist clients in making informed decisions. We value diversity, global thinking, and a collaborative work environment that fosters excellence. Kroll is an equal opportunity employer that recruits based on merit. To be considered for a position, please apply formally via careers.kroll.com.,