Location: Merchantville,NJ, USA
Since 1869 we've connected people through food they love. Our history was created by remarkable people, ideas, and innovations. It serves as inspiration and foundation for our future success. We're proud to be stewards of amazing brands that people trust. Our portfolio includes the iconic Campbell's brand, as well as Michael Angelo's, noosa, Pace, Pacific Foods, Prego, Rao's Homemade, Swanson, and V8. In our Snacks division, we have brands like Cape Cod, Goldfish, Kettle Brand, Lance, Late July, Pepperidge Farm, Snack Factory, and Snyder's of Hanover. We foster a culture of belonging where people come first, and diversity is embraced. And we live our values, always, while setting the highest standards for performance. Here, you will make a difference every day. You will be part of a dynamic, collaborative, and competitive team. You will be supported to build a rewarding career with opportunities to grow, innovate and inspire. Make history with us. Who we are looking for Campbell's is seeking a Security Analyst - Risk Management to be a vital part of a cross functional team of risk analysts. This role will focus on supporting improvements in the maturity of the overall cybersecurity program through the execution of risk assessments both internally at the organization and with third-party vendors to evaluate the risk profile and develop risk treatment plans. The successful candidate will have the desire to deliver high-quality information security initiatives, and the ability to communicate effectively with technical and non-technical audiences. What you will do Vendor Information Risk Conduct security assessments of third-party vendors and service providers. Review and validate security reports, questionnaires, and evidence from third parties. Identify and track security risks and issues related to third parties. Recommend and implement security controls and remediation actions for third parties. Maintain and update the third-party security inventory and risk register. Prepare third party risk reports to effectively communicate residual risk to business stakeholders. Review risk assessment workflows in third-party risk management tool to build new workflows and identify opportunities to increase automation and incorporation of Artificial Intelligence into the program. Assist in the development of various risk assessment scopes to expand the third-party cyber risk program. Work with stakeholders across the organization to understand key third-party relationships and develop continuous monitoring plans to assess risk. Information Technology Risk Management Support the Cyber Risk and Awareness department in the ongoing execution of the Cyber Risk Management program. Partner with business teams to identify, document, assess and mitigate existing and emerging cyber security risks based on the sensitivity level of data in use, control of the data internally and externally, and unique needs of the business unit. Perform cybersecurity risk assessments of internal systems and processes. Support the development and maintenance of security policies, standards, and procedures. Monitor and report on security metrics and key performance indicators. Participate in security awareness and training initiatives. Researching and staying updated on emerging security trends and best practices. Identify and track Risk Issues and supports risk issue owners in identifying ways to mitigate or remediate risks to the IT organization. What you bring to the table (Must Have) 1-3 years of experience in Information Technology, Cybersecurity, Risk Management, Risk Assessments, or similar fields. Bachelor's degree with Emphasis on Information Security, Management Information Systems, Business Intelligence, or similar discipline Project management, time