Share this Job

Global IT Risk Security Senior Manager

Date: May 16, 2019

Location: White Plains, NY, US, 10606

Company: Bunge

Bunge Limited (www.bunge.com, NYSE: BG) is a leading global agribusiness and food company operating in over 40 countries with approximately 32,000 employees. Bunge buys, sells, stores and transports oilseeds and grains to serve customers worldwide; processes oilseeds to make protein meal for animal feed; produces edible oil products for consumers and commercial customers in the food processing, industrial and artisanal bakery, confectionery, human nutrition and food service categories; produces sugar and ethanol from sugarcane; mills wheat, corn and rice to make ingredients used by food companies; and sells fertilizer in South America. Founded in 1818, the company is headquartered in White Plains, New York.

This position focuses on the role of Global IT Risk & Security Manager within the Global IT Risk & Security team aimed to drive a risk and security culture across Bunge. This position is critical in increasing the maturity of the Global IT Risk & Security program. It requires a professional with seasoned experience in building relationships and trust within the IT organization and working with international business units to design, enhance, develop, coordinate, and execute a risk management program that includes risk identification, assessments, risk issue management, and risk reporting. The program supports the business and IT’s compliance objectives with regulatory requirements, external/internal auditors and regulators. This position will be instrumental in overseeing and enhancing the risk issue management repository and producing transparent risk reporting that gives business visibility into their technology risks, thereby enabling risk-intelligent decision making. This position will play a vital role to support the development and continuous improvement of IT policies and standards as well as controls framework, security training and awareness program, risk metrics, key risk indicators (KRI) and reporting. This position also requires extensive experience in the front-end user interface of eGRC platforms to support the successful implementation here at Bunge.

 

Principal Accountabilities:

IT Policies & Standards:

Manage the establishment and implementation of IT Security policies, standards and procedures. Review and enhance IT Process, Risk, and Controls framework. Collaborate with corporate compliance regarding regulatory changes to compliance standards as they relate to Bunge data assets or other business regulations related to IT. Align policies, standards, and controls framework to laws and regulations. Gather feedback to improve policies, standards or procedures across the global IT organization

IT Risk Assessments:

Build relationships with international business and IT workforce members to identify and prioritize risks. Design and develop information security risk assessment methodologies and manage assessments and risk issue treatment practices. Work with international IT Risk & Security Managers to oversee the execution of risk profiles and assessments against IT processes, applications, and infrastructure across all Operating Companies. Conduct Application Risk and Security Assessments and reviews for compliance with established security standards, policies, procedures and guidelines.

IT Risk Issue Management:

Works with global business and IT teams to determine needs of individual businesses and identify controls that protect against unauthorized access, modification, or destruction of information assets. Operate and enhance the risk issue management methodology developed in the eGRC Platform. Manage repository of risk issues including risk mitigation activities and risk acceptances. Responsible for the monitoring of any information risk or security responses to audits.

IT Risk Reporting:

Implement and enhance management reporting, Key Risk Indicators (KRIs) and metrics for risk and compliance. Assist with gathering and presenting information for regulatory reviews and external audits with respect to IT governance and risk. Communicate risk and security related reports to IT and business leadership.

Training & Awareness:

Supports security awareness and training efforts and educates employees and business partners on security policy and best practices. Mentor and educate GITRS team members on leading risk management practices and methods.

Education:

  • Bachelor’s Degree in related field required.  Master's Degree in related field preferred
  • Preferred CRISC, CISM, CISSP other comparable certification or designation

Experience:

  • Minimum five (5) years of experience in IT governance, risk, and compliance and eight (8) years of professional experience
  • Experience with policy and standards development, implementation and compliance
  • Experience with implementing and deploying training and awareness program

Other Requirements:

  • High level of integrity and ethics in dealing with confidential information
  • Excellent analytical, organizational, verbal and written communication skills

Bunge is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, transgender status, national origin, citizenship, age, disability or military or veteran status, or any other legally protected status.  Bunge is an Equal Opportunity Employer. Minorities/Women/Veterans/Disabled


Nearest Major Market: White Plains
Nearest Secondary Market: New York City

Job Segment: Risk Management, Agricultural, Corporate Security, Law, Finance, Security, Agriculture, Legal

Find similar jobs: