Reduction of Supplier Information Security Incidents
Compliance Status against regulations including Data Privacy and UNECE Regulation No. 155 - Cyber security and cyber security management system.
Key Accountabilities and Responsibilities
Identify, assess and reduce risks to a manageable level within JLR’s supply chain.
Engage with suppliers identify, assess and agree on security improvements to acceptable levels of risk.
Monitor on-going compliance of suppliers within defined schedules depending on the risk profile of the supplier.
Ensure supply chain security risks are monitored and measured effectively and to raise concerns and interventions accordingly.
Manage Key Performance and Risk Indicators to drive good security outcomes.
Support colleagues and suppliers with subject matter expertise and support relating to supplier assurance and supply chain security risks.
Essential
Relevant experience in a supply chain security assurance related role.
IT audit/risk management, with examples of managing technology risk and IT compliance standards within an organisation.
Knowledge of information security principles and best practices and experience in managing information security risk and controls in a regulatory environment.
Articulate with strong communication and engagement skills, to build and maintain transparent relationships with stakeholders (including Senior Management) and external suppliers. Able to hold conversations on challenging topics.
Critical thinker with strong attention to detail, organisation and follow up skills.
Leading, planning and conducting interviews with suppliers to enable transparency in key focus areas.
Documenting processes and key controls in association with supplier and organisational processes.
Good level knowledge of standards and frameworks relating to information security risk management p