IT Risk & Security Manager
What's the role?
The IT Risk & Security Manager assesses threats and mitigations to create transparency on the management of risks and ensure Hilti’s risk posture is in line with the risk appetite. He/she manages IT risk & security governance on a day-to-day basis, follows up and provides guidance and advice on all IT risk & security matters across the company.
Who is Hilti?
We provide leading-edge tools, technologies, software and services for the global construction sector. Hilti is a multicultural workplace with 127 different nationalities committed to global teamwork.
Global IT within Hilti is a truly global team with main hubs in Buchs (Switzerland), Kuala Lumpur (Malaysia) and Plano/Tulsa (USA). All locations have highly competent teams who work very closely together. Hilti`s Global IT team is known for their focus on sustainable value creation by translating latest IT innovations into value creating solutions & services.
What does the role involve?
You are member of a global team of experts who manages Risk & Security governance over Hilti’s IT landscape and acts as ambassador for IT Risk & Security Management related topics. You consult and guide various IT engineering teams and project managers on IT Risk & Security, including good practices, standards and measures, and explain IT security procedures, risk scenarios, and governance topics within the business context. You define, implement and maintain the governance framework, track IT Risk & Security Key Performance Indicators (KPIs), and stay current with the evolving threat landscape within IT and IT Risk & Security technologies and understand how it applies to Hilti. You coordinate response to security-related incidents and ensure a thorough post-event analysis, acting as a key liaison with upper-level management. You raise the awareness and sensitize the whole organization to Risk Management & Security topics. You communicate to all stakeholders within the organization, from the IT engineering teams up to the Executive Board, in an audience adapted way.
What do we offer?
Show us what you’re made of and we’ll offer you opportunities to move around the business – to work abroad, experience different job functions and tackle different markets. It’s a great way to find the right match for your ambitions and achieve the exciting career you’re after.
We have a very thorough people review process, unlike any we know of in any other business. We can pair talent with opportunities - developing our people in their current roles or challenging them to work in new ways or in new places. It’s how we find the right fit, further our teams personally and professionally, get the best value for each employee and increase the job satisfaction. Additionally, we offer you a wide range of benefits.
For families, these may include day care for your kid. For the sportspeople, these include a free in-house gym or benefits for bike and ski services.
Why should you apply?
For this position, we are seeking creative, innovative, and open-minded people with a demonstrated ability to work both independently and in a global team setting. If you combine a strong analytical skillset with knowledge and experience in IT security technology and processes, and with excellent oral & written communication skills, you are exactly what we are looking for.
What you need is:
- MSc in Information Technology or similar; PhD preferred
- Minimum five (5) years’ experience in IT Security, Information Security, or IT Governance
- Fluent in English (verbal and written), bilingual preferred
- Specialist certification preferred (CISSP, CISA, S+, ISO 2700X, …)