Job type: 100%, Temps de travail : 90-100%

Loading ...

Job content

Global IS Security Strategy and Resilience Lead

Take your next career step at ABB with a global team that is energizing the transformation of society and industry to achieve a more productive, sustainable future. At ABB, we have the clear goal of driving diversity and inclusion across all dimensions: gender, LGBTQ+, abilities, ethnicity and generations. Together, we are embarking on a journey where each and every one of us, individually and collectively, welcomes and celebrates individual differences.


In this role you will be responsible for the establishment of 3 to 5-year vision of security practices and technology strategies and their bene-fits to Business IS, ISS, Corporate IS, Cyber Security, Digital Security, R&D and IT strategy (Security Roadmap) and managing the roadmap for delivery of the 3-5 year information security technology vision for ABB globally. You will also be driving best practices and development of security incident management practices across Business, Corporate functions and ISS and coordinating critical companywide security incidents at ABB that may harm ABB’s reputation and share value.

This position reports to

Global IS Security Manager

Your responsibilities

  • Is responsible for establishing ABB Corporate Security Incident Management process. These set of processes will define coordination of Critical information security incidents or potential incidents across ABB and require Corporate oversight of coordination and decision making across ABB globally.
  • Maintain a state of readiness supported by ISS CSIRT, relevant Corporate functions (e.g. Legal, Insurance, Corporate Communication & crises Management, Business Cybersecurity etc.) to be able to respond quickly and efficiently for this level of security incidents to minimize business and reputational impact.
  • Is responsible to coordinate along with ABB Corporate Insurance team all aspects of insurance cost tracking, artifacts tracking etc. that are needed to place and settle claims for security incidents that qualify for the same.
  • Is responsible for establishing security design practices working closely with Corporate IS Innovation & Enterprise Architecture team. These practices will be applicable across ABB Corporate IS, Business IS, ISS and Corporate Function when looking at all needs requiring IS services or solutions. Based on and aligned with Business IS Strategy and IS Strategy these will ensure that security be-comes part of the design.
  • These will also take into consideration the state of IT landscape in ABB, State of the worldwide security threat landscape and considerations of evolving threats as well as security technology evolution and best practices.
  • Is responsible for putting in place processes and coordinates them in case invoked to support ABB EC reporting of security incidents, decision making and action tracking at ABB wide level.
  • Is responsible for establishing and maintaining security roadmap. Roadmap to be based on and aligned with Business IS Strategy and IS Strategy. Will act as a subject matter expert on new security technology and practices.
  • Is responsible to define ABB Corporate incident management strategy to ensure that necessary practices that enable a state of readiness to respond at ABB Corporate level, for example tabletop exercises, scenario-based exercises and live testing exercises etc. Act as a subject matter expert by sharing experience, approach on current incident management methodologies and response with various participating teams such as ISS SIAM, performance management, ISS CSIRT, Business IS, Cybersecurity Program, Business Cybersecurity etc.
  • Is responsible for ensuring that all key stakeholder e.g. ABB Corporate IS Innovation & Enterprise Architecture, Business IS Architecture, ISS Architecture, Business IS Information Security, ISS, Business Cyber Security Leads, Digital Security Team, R&D are engaged on an ongoing basis in design and roadmap development.
  • Is responsible for identifying key stakeholders for ABB Corporate level security incident response. Engage with stakeholders with a customer centric approach to understand their expectations as well as agrees on roles they play in Corporate Incidence Response scenarios. Establish an ongoing method of communication, work with them to put in place back resources, identify and engage them. All with the purpose of ensuring that all critical stakeholders are known, engaged, and have clear roles and responsibilities leading to a smoother incidence response processes as needed, leading to accurate and timely reporting to EC and dissemination of actions and decisions.
  • Execute, for assigned tasks, all actions in IS processes according to agreed RACI specification.
  • Is responsible to act in compliance with Corporate IS Regulation and IS Policies; with ABB Regulations and ABB Guidelines of which accountability and responsibility for this position are derived; and with any other Internal Control regulations that may be assigned.
  • Provide leadership to temporary work teams, guiding and monitoring task completion, sharing expert knowledge and advice normally without carrying line responsibility.

Your background

  • Bachelor’s or Master’s degree in Information Technology, Computer Science, Software Engineering or a related qualification, and/or demonstrated capability through past employment experience. Around 10+ years experience of working with and leading Security Architecture and technologies.
  • Around 12+ years of experience in Security Incident Management with a hands-on experience in Security tools, CSIRT services at a large multi-national organization.
  • Excellent experience in assessing, understanding security threat landscape, current and future state of security technologies and their inter-relationship with IT landscape.
  • Excellent experience in assessing impact of security incident, leading investigations and driving organization to make right decisions. Strong communication skills such as planning and leading effective meetings, conducting structured interviews to collect in-formation, interpersonal and negotiation skills, and presenting to a variety of audiences.
  • Team player with proven ability to work effectively with other business units, IT management and staff, vendors, and consult-ants. An ability to perform independent analysis of complex problems and distill relevant findings and root causes.
  • A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vital.
  • Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
  • Experience with common information security management frame-works, such as International Standards Organization (ISO) 2700x, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (COBIT) frameworks
  • High resilience with integrity to work tight timelines and under pressure. A well-developed understanding of and appreciation for business needs and a commitment to leading the information security team in delivering high-quality, prompt, and efficient service to the business.
  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
  • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner. Understanding of IT landscape in an organization to define future roadmap.

More about us

It is our mission in IS to harness the power of information technology to deliver valuable, reliable and competitive IS services for ABB. If you have a strong technical and analytical mind and the drive to help us stay ahead of the competition, you are the one we are looking for. We look forward to receiving your application (documents submitted in English are appreciated). If you want to discover more about ABB, take another look at our website www.abb.com. Work model: hybrid #LI-hybrid

Loading ...
Loading ...

Deadline: 30-04-2024

Click to apply for free candidate

Apply

Loading ...
Loading ...