We are looking for an enthusiastic Third Party Cyber Risk Management leader to work in our IT Risk & Compliance team at Operations Management. This position is full time and is located in Delft, The Netherlands.
About the role
In this role, you will be responsible for managing cybersecurity risks and enhancing IT resilience across IKEA’s vast supplier base. You will ensure that digital risks are systematically identified, assessed, and treated according to IKEA's risk appetite and resilience strategies. You will also lead programs to make sure our business partners remain compliant with our Digital policies and applicable regulations.
More specifically, in this role you will:
Develop and enhance third-party cyber risk management capabilities within IKEA’s value chain, focusing on both digital risk mitigation and IT resilience.
Lead the implementation of cybersecurity risk management frameworks, emphasizing the robustness and adaptability of critical IT operations.
Facilitate cyber risk assessment workshops with suppliers, ensuring alignment with IKEA’s cybersecurity policies and best practices for IT resilience.
Drive the implementation of technical and organizational measures to manage identified cybersecurity risks, focusing on operational continuity and recovery.
Collaborate with business partners to ensure that suppliers comply with IKEA’s digital policies, regulatory requirements, and IT resilience expectations.
Identify best practices across the supplier network to standardize cybersecurity risk management and resilience measures.
Develop and maintain essential cybersecurity steering documents, including resilience frameworks, disaster recovery, and incident response plans.
Continuously monitor and verify that cybersecurity controls are effective, adapting them as the digital risk landscape evolves.
Maintain real-time oversight of the cybersecurity risk landscape, focusing on IKEA’s most critical suppliers and their IT infrastructure resilience.
At any time, act as an ambassador of IKEA values and role model for fact-based business leadership
Foster strong, transparent relationships with franchisees and other IKEA companies, ensuring collaboration and trust through cybersecurity best practices.
This role sits in the Operations Management Information Security and Data Privacy team and reports to the IT Risk & Compliance manager. In this role you will work closely with Information Security and Data Privacy leaders across Inter IKEA Group, contributing to the Inter IKEA security and privacy approach to secure IKEA in a connected value chain. Travels, mainly to Sweden, will be required.
About you
We do some amazing things at IKEA, therefore we need some amazing people – this position is not an exception!
We are looking for a visionary, pragmatic and adaptable information security leader with hands-on experience in Digital risk management who is able to inspire and mobilize people towards clearly set objectives. You like to deal with ambiguity and want to contribute to build new capabilities. You are curious and able to build relationships in order to establish strong trust between the security community and its stakeholders. It is also necessary that you carry natural credibility and you have a proven track record of reaching stretch targets.
We expect you to:
Hold comprehensive understanding of governance, risk, and compliance (GRC) frameworks and their application in cybersecurity and IT resilience.
Hold relevant Digital risk management certifications - CRISC or similar. CISM, CISA or CISSP are big plus
Have hands-on experience in designing and implementing technical and organizational capabilities to manage Digital risks and strengthen organizational resilience
Have hands-on experience in establishing and driving complex third party risk management programs focusing on managing Digital risks and operational continuity
Have practical experience dealing with (IT) auditing activities; auditing experience is a plus
Be a natural facilitator and communicator who is capable to enable risk-based decisions and nurture risk-aware culture
Be consistent, attentive to details, fact-based and data-driven
Be comfortable with agile methodologies and have an experience in a product oriented organisation
Have good English language skills with the ability to cater to non-native audiences
Have capabilities to break down complex information, organise it, and present it in a clear and engaging way.
About us
We do things a little different. We think, differently. Act, differently. And work differently as well. We like to break things. Like rules. And then make things. Like music-playing lamps. Even plantballs that help us look after our planet. It’s all part of our vision - to create a better everyday life for the many.
We want to become an even more affordable, sustainable and accessible home furnishing retailer in an omni-channel reality. We bring business and data & technology together to improve how we work and meet customers, and enable us to focus on creating value. So we can continuously improve and scale IKEA, together with our partners and the many people.
IKEA Operations Management builds up, delivers, serves and supports shared data and technology for the IKEA value chain. Together we build a digital foundation to enable our core business partners and franchisees to work more efficiently and create a rewarding customer experience in an omnichannel world.
Another thing fuelling our success is our values-based culture. While we are unique individuals with endless differences, something we share is our commitment to lead by example, work together, find better ways and to get things done. We believe in life-long learning, where we all play a part in helping each other (and our business) grow.
The IKEA culture and values are very much a part of our business and day to day work life. For you to thrive and grow with IKEA it’s important for us that you share our values! You can read more regarding our values and life at IKEA at www.ikea.com
Questions & Support? Let’s connect!
If you have any questions about the role, please reach out to [email protected]
Please send your CV and don’t forget to attach a cover letter, telling us why you would be a good fit for this role. The closing date for this role is November 7th, 2024.
We look forward to receiving your application!