Emerson

IT Governance, Risk and Compliance Analyst

Emerson

full-time

Posted on:

Location Type: Hybrid

Location: Cluj-NapocaRomania

Visit company website

Explore more

AI Apply
Apply

Job Level

Junior

Tech Stack

Cyber Security

About the role

  • Support Network Information Security Directive (NIS2) assessments for our organization, evaluating their information security controls and practices
  • Document controls, collect evidence and oversee compliance with NIS2
  • Assist in identifying gaps in compliance with NIS2 requirements and support the development of remediation plans to close gaps
  • Collaborate with stakeholders across Emerson to implement and maintain security measures aligned with NIS2 standards
  • Monitor and track progress towards NIS2 compliance goals, ensuring timely completion of remediation plans
  • Report and communicate NIS2 program and compliance initiatives to senior leadership
  • Support Emerson businesses with external audits to achieve NIS2 compliance
  • Provide training sessions and workshops on NIS2 requirements and best practices to internal & supply chain stakeholders to ensure NIS2 awareness as appropriate
  • Stay up to date on any changes within the NIS2 framework and ensure ongoing alignment with evolving standards
  • Preparation of audits:
  • Create and maintain audit schedule
  • Identifying and communicate regularly to stakeholders
  • Support/coordinate evidence collection
  • Preparing the contact persons and audit participants for the audit
  • Follow-up:
  • Managing and reviewing the audit reports and results
  • Report on remediation progress
  • Build control assurance / compliance initiatives to improve the overall cybersecurity posture of the organization
  • Lead and support various information security framework control gap assessments, implementation of framework management systems, gap remediation, ongoing management, and continual improvement initiatives in addition to NIS2 as needed

Requirements

  • Bachelor’s Degree in IT, Information Systems, Computer Science, or related discipline
  • Experience in these areas:
  • Information Security
  • Compliance
  • Risk Management
  • 1-2+ years of experience in ISO 27001 & ISO 27002, TISAX, NIS2 or related information security frameworks
  • Strong understanding of Information Security principles, standards, and frameworks
  • Strong experience conducting security assessments and audits
  • Effective communication and interpersonal skills to properly collaborate effectively with internal teams and external stakeholders.
  • Project management skills to manage program expectations, building work programs/schedules.
  • Willingness to travel (20%)
  • Fluent in English
Benefits
  • Health insurance
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Information SecurityComplianceRisk ManagementISO 27001ISO 27002TISAXNIS2Security AssessmentsAuditsFramework Management
Soft Skills
Effective CommunicationInterpersonal SkillsCollaborationProject ManagementStakeholder ManagementTrainingReportingProblem SolvingAttention to DetailAdaptability