Thermo Fisher Scientific

IT Security Engineer II

Thermo Fisher Scientific  •  Sofia, BG (Onsite)  •  7 hours ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Work Schedule

Standard (Mon-Fri)

Environmental Conditions

Office

As a member of the Corporate Infrastructure and Security - Risk & Assessments team, the IT Security Engineer II is responsible for:

  • Providing key input and assistance in the development and implementation of a global cybersecurity risk management program
  • Maintaining and executing the risk management policy throughout the entire risk lifecycle
  • Executing various risk analysis processes within the team including intake and analysis of reported risks, risk measurement, risk response, and ensuring teams are properly managing plans to reduce risk
  • Execute third party security assessments and analyze identified risks to help with strategic decisions around third party management
  • Ensure consistency of security practice and standards across the organization
  • Conduct Information Security assessments including and documenting controls, identifying potential gaps and or inconsistencies and making sound recommendations for improvement and/or mitigation
  • Collaborate on the technical definitions and oversee implementation of security controls and requirements for systems, infrastructure and solutions

Candidates should have good research, writing, and presenting skills, desire to solve complex problems, and the drive to complete assignments on-time with minimal oversight.

This position will be part of a team that will be responsible for driving visibility and have understanding of information security risk management to contribute and influence strategic decision making across the enterprise.

Key Responsibilities:

  • Carry out information security risk assessments on technology solutions in line with the company risk management program
  • Conduct third-party risk management activities including vendor/supplier assessments and risk analysis.
  • Intake and analysis of identified cyber security issues and risks from a variety of sources including security assessments, compliance checks, automated vulnerability systems, and other internally or externally reported risks.
  • Complete analyses and reports to develop a comprehensive view of risk across the company.
  • Assist and track for accurate risk measurement and response activities, provide necessary information and analysis to help business leaders prioritize risks
  • Review and track action plans developed by risk owners and ensure plans are completed appropriately.
  • Perform ad-hoc risk analysis as assigned.
  • Perform other duties as assigned.

Minimum Requirements/Qualifications:

  • 3+ years’ experience in risk analysis, information risk management, , data privacy, information technology, or equivalent with exposure to cybersecurity and/or information security risk.
  • Bachelor’s Degree in Risk Management, Information Assurance, Information Security, Cybersecurity, IT, Data Privacy or similar area or equivalent work experience.
  • Experience with risk analysis.
  • Ability to explain complex risk management topics to a broad audience
  • General understanding of cybersecurity technologies and controls with the ability to bridge the gap between governance and technical concepts
  • Excellent writing skills, with experience as a writer or technical editor is considered a plus
  • Demonstrated ability to complete work with minimal direction and self-identify tasks
  • Excellent written and verbal communication skills with experience presenting to senior leadership
  • Strong interpersonal, organizational, and excellent documentation skills
  • Excellent customer service skills
  • Relevant certifications such as CRISC, CISSP or CISA are considered a plus
  • Understanding of various risk management frameworks such as the NIST Risk Management Framework or Center for Internet Security Risk Assessment Methodology will be considered plus.

Non-Negotiable Hiring Criteria:

  • Customer service mindset
  • Strong attention to detail, organizational skills, time management
  • Excellent verbal and written communication skills
  • The ability to interact professionally with a diverse group: executives, managers, and subject matter experts.
  • Ability to take direction and independently work through projects as required
Thermo Fisher Scientific

About Thermo Fisher Scientific

About Thermo Fisher Scientific

Thermo Fisher Scientific Inc. is the world leader in serving science, with annual revenue of approximately $40 billion. Our Mission is to enable our customers to make the world healthier, cleaner and safer. Whether our customers are accelerating life sciences research, solving complex analytical challenges, increasing productivity in their laboratories, improving patient health through diagnostics or the development and manufacture of life-changing therapies, we are here to support them. Our global team delivers an unrivaled combination of innovative technologies, purchasing convenience and pharmaceutical services through our industry-leading brands, including Thermo Scientific, Applied Biosystems, Invitrogen, Fisher Scientific, Unity Lab Services, Patheon and PPD.

For more information, please visit www.thermofisher.com.

Industry
Biotech & Life Sciences
Company Size
10,000+ employees
Headquarters
Waltham, MA
Year Founded
Unknown
Website
thermofisher.com
Social Media