Senior ML Security Engineer developing security tools and frameworks for ML workflows. Ensuring proactive vulnerability detection and compliance with ML security standards at NXP.
About the role
- Supplier Security Manager at Vodafone overseeing the security strategy and supplier compliance. Guiding initiatives to mitigate supplier security risks and improve security assurance frameworks.
Responsibilities
- Define and oversee the execution of the supplier security strategy, ensuring alignment with business objectives, risk appetite, and the evolving threat landscape.
- Lead strategic initiatives to reduce supplier security risks.
- Develop frameworks, processes, and tools for effective supplier security risk management.
- Build and maintain strong relationships with internal stakeholders (such as Legal and Procurement) to ensure security requirements are embedded in sourcing and contract management processes.
- Monitor ongoing supplier compliance based on risk profiles.
- Oversee all supporting activities, including KPI and MI reporting, risk flagging, and issue remediation.
- Provide high-quality professional advice to internal teams and support the continuous improvement of the supplier security assurance framework.
Requirements
- You have at least 5 years of experience in supplier security assurance within a complex, global organization.
- You possess in-depth knowledge of ISO standards related to security and business continuity.
- You demonstrate excellent stakeholder management, communication, and influencing skills.
- You have a thorough understanding of supplier governance, security management processes, practices, and technical countermeasures.
- You are able to analyze complex information, identify key points, and communicate them clearly and effectively.
- You hold relevant professional certifications (such as CISSP, CISM, CISA, CRISC, CBCI, ISO 27001 Lead Auditor, or ISO 22301 Lead Auditor).
Benefits
- Hybrid working regime 2 days from the office, 3 days remote
- Special discounts for Vodafone employees, Friends & Family offers
- Demo telephone subscription - unlimited (voice and data)
- Voucher for the purchase of a mobile phone
- Medical subscription to a top private clinic & other medical benefits
- Insurance for hospitalization and surgical interventions
- Life insurance
- Meal tickets
- Bookster subscription
- Participation in development programs and challenging projects in the leadership area
- Access to internal Wellbeing & Recognition events
- Extra vacation days (for seniority, special events, volunteering)
- You will benefit from specializations in your field of activity, through programs based on modern training methods and systems
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Lead a multidisciplinary team at NXP focused on the proactive identification and analysis of security vulnerabilities in semiconductor products. Drive innovative approaches to security testing and team management.
Security Architect designing security architectures for embedded products at NXP. Collaborating with teams on threat assessments and managing security requirements in IoT/Automotive domains.
Security Software Engineer at Pinterest developing IAM infrastructure and tools for identity and authorization. Collaborating on mission - critical features in a team - focused environment.
Senior Network and Security Information Analyst defining and implementing network and information security at Airbus. Managing security assets and compliance across the organization while documenting and reporting vulnerabilities.
Associate Consultant for Microsoft Security focused on supporting the delivery of security solutions. Collaborate with experienced consultants and learn in a remote - first environment with occasional onsite work.
Software Engineering Intern at Red Hat working on the security of software production pipelines. Contributing to projects involving AI tools and secure development practices in Brno, Czech Republic.
Technical support intern assisting clients and monitoring backup systems. Involves client interaction, system maintenance, and adherence to legal standards.
GRC Lead managing security compliance and risk governance in Egypt. Driving initiatives for ISO 27001 alignment and overseeing security audits and policies.
Cybersecurity Engineer responsible for safeguarding information systems and developing cyber security capabilities. Involves project management and collaboration through all phases of software development lifecycle.