Supplier Cyber Specialist

Role Overview: As a Cyber Risk Management Specialist at Hitachi Energy, you will play a crucial role in safeguarding the business and ensuring the delivery of secure products and services to customers. Your primary responsibility will involve collaborating with multi-stakeholder partnerships to protect the supply chain from organizational risks. You will work closely with various departments to review strategies, manage cyber risk management tools, identify vulnerabilities, and report threats to internal stakeholders. Key Responsibilities: - Communication with Stakeholders: - Communicate ongoing updates for the CRM-S program, including updates to Cybersecurity Standard, Supplier (CS-S), CRM-S policy, and standard. - Support the organization in increasing supplier cybersecurity awareness through workshops, training sessions, and roadshows. - Cyber Risk Management Strategy: - Manage CRM-S documentation within the SharePoint site (CRM-S library). - Collaborate with internal and external stakeholders to formalize processes, develop training, and update initiatives. - Monitor business adherence to CRM-S requirements and communicate cyber risk assessment results periodically. - Support the CRM-S Team in building, maintaining, and updating the CRM-S program. - Stakeholder Coordination: - Act as the primary contact for all supply chain-related inquiries. - Build relationships with business teams within the organization to support supplier cyber risk management activities. - Continuous Monitoring: - Provide consultation and support to other teams regarding supplier cybersecurity requirements. - Work closely with SCM Risk Management to ensure effective communication and assessment of cyber risks. - Technology and Tools: - Leverage technology and cyber risk management tools to enhance incident response capabilities. - Manage impact analysis/reporting during crises in collaboration with Supply Chain Risk Management. - Support the implementation and integration of Bitsight tools with Resilinc. Qualifications Required: - Degree (or equivalent) in information technology or related field. - 3-5 years of experience in information technology. - CISA/CISSP (or equivalent) certification preferred. - Deep understanding of information security and risk frameworks/standards such as ISO 27001 and NIST. - Knowledge of key risk areas including Security Governance and Management, Identity and Access Management Control, Incident Response, and more. - Excellent stakeholder management and communication skills. - Previous experience in implementing and managing a cyber risk management tool. - Proficiency in both spoken and written English language.,