Cyber Supplier Qualification Specialist guiding suppliers through cyber security compliance for a defence program. Collaborating with stakeholders and supporting risk management and assurance processes.
About the role
- Information Security Risk Management Specialist managing security risks across the Liebherr group. Supporting risk management and governance in information security with reporting to executive levels.
Responsibilities
- supports the implementation and continuous operation of our Information Security Risk Management Product
- Responsible for identifying, documenting, assessing, and tracking information security risks across the Liebherr group of companies
- Deliver insights through executive-level dashboards and reports
- Maintain and update the risk registers, tracking ownership, mitigation plans, residual risk, and status
- Drive risk management data completeness, accuracy, and traceability of risk decisions
- Collaborate with IT and business representatives, and technology experts to capture and validate risk information
- Conduct qualitative and or quantitative risk assessments for Liebherr companies and from reported security issues
- Track mitigation and treatment plans, monitor implementation progress, and flag delays or unresolved risks
- Develop and maintain security risk management dashboards and reports using business intelligence tools
- Track and report key risk indicators (KRIs), key performance indicators (KPIs), and risk treatment effectiveness
- Contribute to process improvement initiatives for risk assessment and treatment workflows
Requirements
- Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related field
- 3+ years of working experience in information security, IT security, risk management or related roles
- Certifications such as CISSP, CISM, CRISC are a plus
- Understanding of NIST SP 800-39, NIST CSF, and ISO/IEC 27005 risk management concepts
- Experience in regulated industries (e.g., manufacturing, defense)
- Experience with creating and maintaining risk registers, reporting tools, and producing risk management risk indicators, metrics and reports
- Demonstrated ability to manage stakeholders across IT, OT, engineering, and business management in complex environments
- Good analytical and communication skills to explain risk findings to both technical and non-technical stakeholders
- Fluency in English (written and spoken) is a must; skills in German would be an advantage.
Benefits
- Competitive compensation and benefits package that recognizes your expertise
- Flexible and hybrid working model
- Creative freedom and responsibility to shape processes and solutions in our global transformation
- Continuous learning and development with tailored training and certification opportunities
- Meal vouchers
- Life and accident insurance
- Option to include a premium private health insurance package as part of the flexible remuneration
- A safe, stable and international workplace within a trusted family business that invests in people
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
SAP Security Architect and Team Lead ensuring security for vital defence systems. Overseeing audits and managing a team of SAP specialists in a hybrid working environment.
Internal Audit Senior Manager overseeing audit transformation and execution at GE Vernova. Leading teams to develop audit strategies and manage stakeholder relationships in a hybrid work environment.
Internal Audit Senior Manager overseeing audit teams and aligning audit strategies with risk priorities at GE Vernova. Leading high - performance audit teams under a hybrid working model.
Security Business Partner acting as a strategic liaison for Corporate Information Security. Driving cybersecurity strategies and fostering secure growth for MSSCs in Liebherr Group.
IT Director serving as Virtual Chief Information Security Officer for key client in New Jersey. Leading cybersecurity strategy, vendor management, and technology planning in a hybrid role.
Solutions Marketing Manager driving awareness and engagement for SHI’s cybersecurity and data center solutions. Focusing on go - to - market execution and compelling product messaging in the IT space.
System Software Engineer focusing on security tooling and infrastructure at NVIDIA. Designing automation frameworks for secure GPU firmware development and collaborating globally.
IT Security Administrator responsible for user account management and identity governance at SailPoint. Collaborating with internal teams and managing JML activities for enterprise applications.
Senior Systems Security Engineer developing cybersecurity solutions for defense systems at Raytheon. Interacting with clients and managing system security engineering for military applications.