Location: 上海浦東新區(qū)前灘國(guó)際商務(wù)區(qū)四方城
A Snapshot of Your Day
Embark on a dynamic journey as a Cybersecurity Supplier Assessor at Siemens Energy, as no two days are the same!
We are looking for a cybersecurity professional who is energized about safeguarding our organization’s cyber posture by utilizing your skills to identify and manage cybersecurity risks relating to supplier engagements. The Cybersecurity Supplier Assessor will provide a key role assessing the control practices and posture of new and existing Third Parties and make recommendations that help to improve business decisions and transform the cybersecurity landscape of Siemens Energy and our customers.
How You’ll Make an Impact

• Conduct detailed assessments of cybersecurity practices and 3rd party controls.
• Analyze assessment findings to identify risks and gaps in security posture.
• Collaborate with key stakeholders to develop and implement improvement plans.
• Understand and translate cybersecurity legal clauses and terms within supplier contracts.
• Lead and support required negotiations of those terms with procurement and/or legal.
• Keep abreast of cybersecurity trends and emerging threats to continuously improve assessment methodologies.
• Understand industry standard processes and support benchmarking of 3rd party risk management services, tools, etc.
• Make a direct impact on the organization's cybersecurity posture by ensuring 3rd party suppliers meet the highest security standards.

What You Bring

• University degree from Faculty with a preference for computer science, data science, information technology, legal fields, or equivalent technology/business management related degree.
• Fluency in English Speaking.
• Familiarity with Information Security Risk, methodologies, frameworks such as ISO 27001, NIST, COBIT and industry best practices to help ensure a secure cloud computing environment.
• Keen eye for detail and passion for excellence
• Deep understanding of cybersecurity principles, exceptional analytical abilities, and familiarity with standard methodologies regarding security of networks, services, products, operations, etc.
• Good communication and presentation skills. Passionate about listening and collaborating with different functions like procurement, legal and suppliers. Ability to communication with all levels of the organization up through and including our executive management team.
• Experience in the end-to-end management of supplier assessments, integration of application security standard processes, secure coding practices, etc. into remediation measures, and ensuring risk measures are properly documented, understood, and handled.
• Energized to use innovative methods and ideas that drive supplier resilience methodologies.
• Desire to get results and continuously focus on improving processes and services.
• Availability for international business trip (at least 10% of the time)

Nice to have

• CRISC, CISA, CCSK, CCAK, CSX-Practitioner, ISO 27001 Lead Auditor, PM or comparable certifications will be considered a plus
• Previous work experience of 3 to 5 years as an Information Security auditor

About the Team
You will be part of a global team that provides cybersecurity support services for all Siemens Energy Divisions and Functions as well as all seven Siemens Energy hubs. You will also join our companywide cybersecurity community of more than 130 members.
Who is Siemens Energy?
At Siemens Energy, we are more than just an energy technology company. With ~100,000 dedicated employees in more than 90 countries, we develop the energy systems of the future, ensuring that the growing energy demand of the global community is met reliably and sustainably. The technologies created in our research departments and factories drive the energy transition and provide the base for one sixth of the world's electricity generation.
Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.
Our Commitment to Diversity
Lucky for us, we are not all the same. Through diversity, we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.
Rewards/Benefits
Opportunities for career growth and development.
A collaborative and innovative work environment.
Access to brand new technologies and training.
Health and wellness programs.