Descrizione
Sr. Analyst, Cybersecurity Compliance
Xylem |ˈzīləm|
-
The tissue in plants that brings water upward from the roots;
-
a leading global water technology company.
Xylem, a leading global water technology company dedicated to solving the world’s most challenging water issues, is the leading global provider of efficient, innovative and sustainable water technologies improving the way water is used, managed, conserved and re-used. Our international team is unified in a common purpose: creating advanced technology and other trusted solutions to solve the world’s water challenges. We are committed to creating an organization of inclusion and diversity, where everyone feels involved, respected, valued and connected, and where everyone is free to bring their authentic selves and ideas.
If you are excited and passionate about helping us #letssolvewater, we want to hear from you! For more information, please visit us at www.xylem.com.
We Offer You More Than Just “A Job”
- Professional Development – To advance the capabilities of our people, we offer a wide variety of experiences to support our employees’ professional growth and continuous learning.
- Total Rewards – We offer comprehensive programs for compensation, benefits, recognition, learning and development, work-life integration and corporate citizenship.
- Watermark – Watermark is our corporate social responsibility program working to provide education and access to safe water to ensure healthy lives, gender equality, and resilient communities. Employees have the opportunity to learn and volunteer on various water-related projects.
- Employee Networks – Our Employee Networks provide a professional, supportive network for employees from diverse backgrounds, including Women’s, LGBT+ and Allies, Veteran’s, People of Color and Allies, Emerging Leaders, and Working Parents Networks.
The Role: As a Senior Analyst, Cybersecurity Compliance, your main responsibility is to ensure that Xylem’s operations and procedures meet government and industry Cybersecurity compliance standards or legislations which includes in-depth understanding on global government executive guidelines and security resiliency programs.
This role will include research on country regulations and policies, communicate requirements to the product security leaders and lead in creating processes to comply to these requirements. This role will include broad knowledge on security industrial best practices, security assessment and risk management as well as security internal and external compliance audit effort.
You’ll work with key stakeholders across the company while working closely with the appropriate centers of excellence to ensure compliance goals are achieved.
Essential Duties/Principal Responsibilities:
- Experienced Information Security Systems Security and Compliance Analyst with in-depth knowledge industrial automation and control systems (IACS) as well as standard Cybersecurity control frameworks and lead Xylem in mapping requirements and processes towards these best practices standards
- Analytical and operational ability to assess our security performance through controls mapping activities towards our policies and standards and be able to provide leadership towards continuous improvement.
- Oversee and maintain Cybersecurity Policies and Standards revision changes and ensure alignment to our Compliance, Education and Awareness Programs
- Build and Maintain Cybersecurity Metrics for all levels of management focused on trending and tracking reports to show adherence to governance and compliance focused on risk management
- Research and document Cybersecurity policy exceptions and ensure compliance and perform quarterly report on exceptions made
- Organize the collection of data from required security artifacts and questionnaires for industry framework eg NIST Framework, ISO27002, CSF, IEC 62443, Hi-Trust, Third Party Management and other related global industrial and cybersecurity standards and have the ability to map this to the company policies and standards
- Proficient in program management with strong skills in coordination and collaboration with stakeholders and partners
- Cybersecurity Awareness or Training content writing preferred
Minimum Qualifications: Education, Experience, Skills, Abilities, License/Certification:
- Bachelor’s Degree in Computer Science, Cybersecurity or Information Systems, or a related field
- 6-8 years’ experience in Information Systems and Cybersecurity
- CIPM or CIPT, PMP and One Trust Privacy Professional Certification a MUST, IT Audit Experience desirable and CISSP as plus
- Strong written and oral communication skills
- Demonstrated ability to collaborate with various stakeholder groups and vendor relationship
- Able to general operational reports and broad understanding on risk metrics and analysis
Physical Demands:
(The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)
- Regularly required to sit or stand, reach, bend and move about the facility
Work Environment:
(The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)
- Office: Standard office equipment; work usually performed in an office setting free from any disagreeable elements.
- Standard weekly job hours: 40 hours
Xylem is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.