Campbell Soup - Camden, NJ

posted about 2 months ago

Full-time - Mid Level
Camden, NJ
Food Manufacturing

About the position

Since 1869, Campbell Soup Company has been connecting people through the food they love. Our history is built on remarkable people, ideas, and innovations, which serve as the foundation for our future success. We are proud stewards of iconic brands that people trust, including Campbell's, Michael Angelo's, noosa, Pace, Pacific Foods, Prego, Rao's Homemade, Swanson, and V8. In our Snacks division, we have beloved brands like Cape Cod, Goldfish, Kettle Brand, Lance, Late July, Pepperidge Farm, Snack Factory, and Snyder's of Hanover. We foster a culture of belonging where people come first, and diversity is embraced. Our values guide us as we set the highest standards for performance, and we strive to make a difference every day. We are seeking a Security Analyst - Risk Management to join our cross-functional team of risk analysts. This role is crucial in supporting improvements in the maturity of our overall cybersecurity program. The successful candidate will execute risk assessments both internally and with third-party vendors to evaluate risk profiles and develop risk treatment plans. This position requires a commitment to delivering high-quality information security initiatives and the ability to communicate effectively with both technical and non-technical audiences. In this role, you will conduct security assessments of third-party vendors and service providers, review and validate security reports, and identify and track security risks related to third parties. You will also recommend and implement security controls, maintain a third-party security inventory, and prepare risk reports for business stakeholders. Additionally, you will support the Cyber Risk and Awareness department in executing the Cyber Risk Management program, partnering with business teams to identify and mitigate cybersecurity risks, and participating in security awareness initiatives. Your ability to digest complex concepts quickly and communicate risks effectively will be essential to optimizing the trade-off between risk mitigation and business performance.

Responsibilities

  • Conduct security assessments of third-party vendors and service providers.
  • Review and validate security reports, questionnaires, and evidence from third parties.
  • Identify and track security risks and issues related to third parties.
  • Recommend and implement security controls and remediation actions for third parties.
  • Maintain and update the third-party security inventory and risk register.
  • Prepare third-party risk reports to effectively communicate residual risk to business stakeholders.
  • Review risk assessment workflows in third-party risk management tool to build new workflows and identify opportunities to increase automation and incorporate Artificial Intelligence into the program.
  • Assist in the development of various risk assessment scopes to expand the third-party cyber risk program.
  • Work with stakeholders across the organization to understand key third-party relationships and develop continuous monitoring plans to assess risk.
  • Support the Cyber Risk and Awareness department in the ongoing execution of the Cyber Risk Management program.
  • Partner with business teams to identify, document, assess, and mitigate existing and emerging cybersecurity risks.
  • Perform cybersecurity risk assessments of internal systems and processes.
  • Support the development and maintenance of security policies, standards, and procedures.
  • Monitor and report on security metrics and key performance indicators.
  • Participate in security awareness and training initiatives.
  • Research and stay updated on emerging security trends and best practices.
  • Identify and track risk issues and support risk issue owners in identifying ways to mitigate or remediate risks.

Requirements

  • 1-3 years of experience in Information Technology, Cybersecurity, Risk Management, Risk Assessments, or similar fields.
  • Bachelor's degree with emphasis on Information Security, Management Information Systems, Business Intelligence, or similar discipline.
  • Project management, time management, and prioritization capabilities.
  • Familiarity with cybersecurity management frameworks including NIST, IS27001, COBIT 5.
  • Demonstrated ability to digest complex concepts quickly and a strong desire to gain knowledge of networks, desktops, servers, cloud, and software as a service technology.
  • Ability to identify and evaluate risk in accordance with the company and business unit's overall risk tolerance.
  • Ability to effectively present findings and convince others to make appropriate changes in their priorities and behaviors.

Nice-to-haves

  • Familiarity in dashboarding and reporting through visualization platforms like PowerBI.
  • Hands-on experience and/or familiarity with Governance Risk and Compliance platforms.
  • Advanced interpersonal skills, including teamwork, facilitation, and negotiation.
  • A desire to learn new things and a mindset of continuous improvement.

Benefits

  • Dental insurance
  • 401(k)
  • Competitive health benefits
  • Wellness benefits beginning on the first day of employment
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service