Manufacturing Cybersecurity Supplier Program Sr. Specialist
About the job
SummaryBy Outscal
Nissan is looking for a Manufacturing Cybersecurity Supplier Program Sr. Specialist to join their team. This role requires 2-5 years of experience in performing supplier cybersecurity assessments and a strong knowledge of cybersecurity principles and best practices. The ideal candidate will be familiar with NIST CSF and other relevant cybersecurity frameworks.
Nissan MCSP Specialist Job Description:
Nissan is currently looking for a Manufacturing Cybersecurity Supplier Program (MCSP) Sr. Specialist to join our team. This role will be responsible for supporting senior members of the Supply Chain Management (SCM) team in operating the Manufacturing Cybersecurity Supplier Program (MCSP) assessments program, performing remote assessments, and coordinating with the SCM and Information Security Teams as needed.
Responsibilities:
- Support senior members of the SCM team in operating the third-party cybersecurity assessments program.
- Communicate effectively with suppliers to facilitate the completion of criticality and security assessment questionnaires.
- Review supplier provided documentation for adherence to Nissan control requirements.
- Assist in performing remote (virtual based) assessments for suppliers to evaluate cybersecurity risk based on their criticality level.
- Ensure suppliers maintain a strong cybersecurity posture and promptly address any identified deficiencies.
- Coordinate with the Purchasing and Legal teams to ensure contracts/statements of work include necessary cybersecurity language.
- Collaborate with the SCM and Information Security Teams as needed during assessments and report any significant findings.
- Contribute to the continuous improvement of Manufacturing Cybersecurity Supplier Program (MCSP) processes and documentation.
- Support monitoring and tracking of open findings and their remediation progress in collaboration with suppliers and SCM team members.
- Support ongoing monitoring of suppliers and participate in periodic re-assessments.
Qualifications:
- Bachelor's degree in Cybersecurity, Management Information Systems, Information Technology, Business, or a related field is preferred.
- Advanced English level
- 2-5 years of experience in performing supplier cybersecurity assessments.
- Strong knowledge of cybersecurity principles and best practices.
- Familiarity with NIST CSF and other relevant cybersecurity frameworks.
- Knowledge of IT controls
- Experience performing cybersecurity gap assessments based on interviews and review of documentation.
- Experience working with internal and external stakeholders on findings remediation.
- Excellent communication and interpersonal skills.
- Strong problem-solving and analytical mindset.
- Ability to adapt to changing priorities and manage multiple tasks concurrently.
- Strong attention to detail and a high level of accuracy in work output.
- Proficiency in Microsoft Office Suite, especially Excel, PowerPoint, and Word.
- IT certifications such as CISSP, CISA, CTPRP, or other relevant certifications are preferred.
Nissan (NMEX,NEdM, NRFS, NRFM y ANZEN) realiza contrataciones con base al cumplimiento del perfil de puesto en la vacante, sin distinción (ni discriminación por género, identidad y/o expresión de género, orientación sexual, ) raza, color, idioma, religión, opinión política o de cualquier otra índole, origen nacional o social, posición económica, nacimiento o cualquier otra condición.
Nissan (NMEX,NEdM, NRFS, NRFM and ANZEN) hires based on the fulfillment of the job profile in the vacancy, without distinction or discrimination based on gender, gender identity and/or expression, sexual orientation, race, color, language, religion, political or any other opinion, national or social origin, economic position, birth or any other condition.
By applying for the advertised position, candidates acknowledge that Nissan Mexicana and its subsidiaries reserve the right to conduct a public conduct search due to the sensitive nature of the assets and information involved in the role. This includes, but is not limited to, proprietary information, financial data, and other assets requiring safeguarding. Nissan Mexicana and its subsidiaries assure confidentiality and compliance with all legal requirements regarding the use of such information. By applying for this position, you are consenting to this check.
