Schneider Electric is the global specialist in energy management and automation. With revenues of ~€25 billion in FY, our ,+ employees serve customers in over countries, helping them to manage their energy and process in ways that are safe, reliable, efficient and sustainable. From the simplest of switches to complex operational systems, our technology, software and services improve the way our customers manage and automate their operations. Our connected technologies reshape industries, transform cities and enrich lives. At Schneider Electric, we call this Life Is On. At Schneider Electric, Cybersecurity is not an afterthought. Its companywide Cyber-security posture, led by Schneider Digital, aims at securing the digital journey of Schneider, its partners, and its customers through: · Strong and comprehensive digital governance and risk management · A set of risk prevention, detection, and response capabilities and operational plan · Specific attention to High-Value Assets · A set of Reality Check metrics This Cybersecurity posture fuels Schneider Electric innovation in IoT and enables the Company to advance IT/OT convergence and to ensure that Schneider, its partners, and customers can thrive in today's digital economy. Job purpose SAM Cybersecurity Manager will report to the Americas Cybersecurity VP and Chief Information Security Officer (CISO) and will be in responsible for establishing and maintaining the cybersecurity posture (process, people, technology) at a regional level for SAM and Mexico. This key leader needs to bring a security first culture in everything we do at Schneider Electric while protecting and managing the risk for the company appropriately. Key Responsibilities · Develop and Implement Regional Cybersecurity Strategy: partner with the global Americas cybersecurity team to establish and maintain the overall security strategy to the specific needs and regulations of the SAM region. · Ensure Compliance: ensure regional cybersecurity practices adhere to industry standards, internal policies, and external regulations. · Manage Risk: identify and assess potential cybersecurity threats in the region and implement controls to mitigate them · Security Operations: serve as an incident handler to investigate and respond to security incidents in partnership with the Security Operations Center · Promote Cybersecurity Awareness: raise awareness about cybersecurity risks and the digital security policies and procedures with regional employees and stakeholders · Maintain Communication: communicate clearly, concisely, and regularly with key internal business leaders and external stakeholders the Schneider cybersecurity strategy, polices and standards. · Establish relationships: engage with local, state, and federal law enforcement and related government agencies. · Stay Updated: keep informed about the latest cybersecurity trends, threats, and regulations to adapt the regional strategy accordingly Qualifications Leadership and soft skills · Ability to present problems in the larger scope of Business strategies. · Strong communication skills, both written and as a presenter to internal and external audiences. · Customer service-oriented mindset · Ability to conform to shifting priorities, demands and timelines through analytical and problem-solving capabilities. · Ability to identify issues/risk, analyze and understand underlying causes and devise appropriate action plans. · Capability to operate in a complex matrix environment and with autonomy. · Self-motivated to achieve outstanding results Technical skills · Bachelor's degree; Computer Science, Management Information Systems or Engineering/Science required, Masters in security preferred. · Certification as a Certified Information Security Systems Security Professional (CISSP), Certified Chief Information Security Officer (CCISO), or Certified Information Security Manager (CISM); · Experience with projects in an international environment · Broad experience in Information Systems technology, in particular in networks, data center, cloud operation · Demonstrated experience managing threat response. · Familiarity with Information Security industry standards/best practices and relevant regulations (e.g., PCI DSS, GDPR, NIST, ISO, HIPPA) · Previous experience of Incident Response and Crisis Management practices – 7 years of active internal investigations or incident response experience. · Proficient in English and Spanish. Portuguese desirable. At Schneider Electric we want our employees to reflect the diversity of the communities in which we operate. We welcome people as they are, creating an inclusive culture where all forms of diversity are seen as a real value for the company. We embrace a high-performance culture by being straightforward, open, passionate and effective and challenging the status quo. Schedule: Full-time Req: VTK
