Risk Manager

Background:

“The work will focus on implementation of the Information Security Risk management (IRM) and the Digital Risk Intelligence Framework,together with business and IT stakeholders. Aligning the IRM with other risk practices in SKF and towards Enterprise Risk Management base don ISO31000 and COSO. Plan and provide requirements for implementation of IRM into the future supporting platform based on ServiceNow. Identify business critical process and supportign digital landscapes, and work to ensure risk-centric approach in design, and implementation of new and ennhanced functionalities to assign relevant risk threatment plans and risk owmer reposnibilities. Align with IT service/portfolio management and application service/portfolio management to ensure execution and risk management in accordance to the business critical assessment and security assessments performed fo rthe environments.”

Requirements:

“Security Consultant with senior experience and tranformational  mindset in implementing risk intelligence and risk management for global organzaitions. The role need to have a holistic and functional mindset to security risk and threat frameworks, strong work experience in implementing solutions designed to provide real actionable risk insights to protect the business operations and brand for SKF.

• 10+ years documented experience within IT
• 8+ years documented experience within Risk/Information Security
• Strong knowledge in risk and threat frameworks
• Extensive experience in implementing risk management in large global organizations
• Knowledge in regulatory requirements, such as ITAR, TISAX, ISO31000, ISO27001, NIST 800 and COSO ERM
• Relevant professional certifications are advantages, such as CRISK/CREST
• Excellent written and verbal communication skills in English”

Tasks:

“The SKF landscape is distributed and complex and the work includes work with multiple entities of the SKF Group, ranging from sales and marketing organizations, through manufacturing and distribution supply chains to independent business units and emerging new business models.

You will be part of a global organization working with multiple stakeholders and domains within the SKF community. The area of Threat and Risk Intelligence aim to evaluate suitable functional deliveries for SKF, to ultimately provide better risk insights for decisions to reduce threat and risk exposures on the SKF business.

You will team up with Threat and Security Managers, Solution Architects and Service/Product Owners and other colleagues in SKF”