IT Risk & Security Manager
What's the role?
Looking for an exciting challenge in one of the most innovative companies? Good news, we’re hiring! Join a global team of experts who manage Cyber Risk & Security Governance over Hilti’s IT landscape, and act as ambassadors and single points of contact for Cyber Risk & Security topics. As IT Risk & Security Manager you’re responsible for analysing and assessing threats and risks to Hilti. You own and develop the risk framework, create transparency on the management of risks and mitigations, and contribute to the enterprise-wide Cybersecurity Strategy, from chip to cloud. You will manage Cyber Risk & Security governance on a day-to-day basis, follow up and provide guidance and advice on all Cyber Risk & Security matters across the company
Who is Hilti?
We provide leading-edge tools, technologies, software and services for the global construction sector. Hilti is a multicultural workplace with 55 different nationalities committed to global teamwork.
Global IT within Hilti is a truly global team with main hubs in Buchs (Switzerland), Kuala Lumpur (Malaysia) and Plano/Tulsa (USA). All locations have highly competent teams who work very closely together. Hilti`s Global IT team is known for their focus on sustainable value creation by translating latest IT innovations into value creating solutions & services.
What does the role involve?
You are member of a global team of experts who manages Risk & Security governance over Hilti’s IT landscape, and act as ambassador for Cyber Risk & Security Management related topics. You consult and guide various IT engineering teams and project managers on Cyber Risk & Security, including good practices, standards and measures, and explain Cybersecurity procedures, risk scenarios, and governance topics within the business context. You define, implement and maintain the governance framework, track Cyber Risk & Security Key Performance Indicators (KPIs), and stay current with the evolving threat landscape within IT and Cyber Risk & Security technologies and understand how it applies to Hilti. You coordinate response to security-related incidents and ensure a thorough post-event analysis, acting as a key liaison with upper-level management. You raise the awareness and sensitize the whole organization to Risk Management & Security topics. You communicate to all stakeholders within the organization, from the IT engineering teams up to the Executive Board, in an audience adapted way
What do we offer?
Show us what you’re made of and we’ll offer you opportunities to move around the business – to work abroad, experience different job functions and tackle different markets. It’s a great way to find the right match for your ambitions and achieve the exciting career you’re after.
We have a very thorough people review process, unlike any we know of in any other business. We can pair talent with opportunities - developing our people in their current roles or challenging them to work in new ways or in new places. It’s how we find the right fit, further our teams personally and professionally, get the best value for each employee and increase the job satisfaction. Additionally, we offer you a wide range of benefits.
Why should you apply?
Become a valuable member of our highly professional and international team of IT experts and meet the challenges of a global multinational company using latest technologies. You will have the freedom to act in the responsible area with career prospects in a dynamic environment, excellent opportunities to develop yourself to higher levels and wider range of knowledge. Our team in Kuala Lumpur is a fully recognized and respected competence center that is covering all relevant areas of IT. 80% of the top positions are filled internally. We have a clearly defined career development track for every individual employee and an excellent team which are duly rewarded by performance.
What you need is:
- For this position, we are seeking creative, innovative, and open-minded people with a demonstrated ability to work both independently and in a global team setting. If you combine a strong analytical skillset with knowledge and experience in IT security technology and processes, and with excellent oral & written communication skills, you are exactly what we are looking for.
- Bachelor Degree in Information Technology or similar; MSc or PhD preferred
- Minimum five (5) years’ experience in IT Security, Information Security, or IT Governance
- Hands-on experience in at least one IT engineering domain (e.g. Clients, Network, Applications)
- Fluent in English (verbal and written)
- Specialist certification preferred (CISSP, CISA, S+, ISO 2700X, …)
Come join us!