IT & Security Risk Program Manager - 3rd Party, Client inquiries, emerging cybersecurity risks and regulatory changes
Collaborate with Innovative 3Mers Around the World
Choosing where to start and grow your career has a major impact on your professional and personal life, so it's equally important you know that the company that you choose to work at, and its leaders, will support and guide you. With a diversity of people, global locations, technologies and products, 3M is a place where you can collaborate with 96,000 other curious, creative 3Mers.
This position provides an opportunity to transition from other private, public, government or military environments to a 3M career.
The Impact You'll Make in this Role
As a IT & Security Risk Program Manager you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative and diverse people around the world. Here, you will make an impact by:
Implementing the company's third-party security assessment policy and managing the full end-to-end cycle of the third-party security risk management process for the company
Create and implementing a process to respond timely and holistically to clients who perform 3rd party risk assessments on 3M as their supplier/vendor
Measuring and tracking vendor portfolio risk posture; work with clients and internal counterparts to implement remediation where required
Being the lead and main point of contact for the third-party security and newly created client response security risk team; this virtual team will be members within the broader Information Risk Security and Compliance (ISRC) organization
Leading the integration of the third-party security risk program into broader company security and risk processes
Assisting the compliance, risk and security departments with administrative duties as required
Your Skills and Expertise To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:
Bachelor's degree or higher (completed and verified prior to start) from an accredited institution
Five (5) years of IT Security or IT Risk Management leadership experience in a private, public, government or military environment
One (1) or more IT Security or Risk related certifications such as CISSP, CRISC, CISA
Additional qualifications that could help you succeed even further in this role include:
Experience managing risk and completing the due diligence process for third party vendor relationships
In depth knowledge with frameworks like ISO 27001and NIST
Familiarity with cloud technologies (SaaS, PaaS, IaaS)
In depth knowledge with regulatory requirements such as SOX
Familiarity with requirements under Payment Card Industry Data Security Standards (PCI-DSS) & Service Organization Controls (SOC) as it relates to IT & Security risk management
Travel: May include up to 10% [domestic/international]
Relocation Assistance: May be authorized
Location: Maplewood, MN and may consider remote U.S. work location
Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).
Supporting Your Well-being
3M offers many programs to help you live your best life - both physically and financially. To ensure competitive pay and benefits, 3M regularly benchmarks with other companies that are comparable in size and scope.
Resources for You
For more details on what happens before, during and after the interview process, check out the Insights for Candidates page at 3M.com/careers.
Learn more about 3M's creative solutions to the world's problems at www.3M.com or on Twitter @3M. Responsibilities of this position include that corporate policies, procedures and security standards are complied with while performing assigned duties. 3M is an equal opportunity employer. 3M will not discriminate against any applicant for employment on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status.
Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.
Please access the linked document by clicking here, select the country where you are applying for employment, and review. Before submitting your application you will be asked to confirm your agreement with the terms.
Internal Number: R01045934
Here, you matter. You inspire.
Here, you go.
At 3M, inspiration happens daily. Here, science is how the
magic happens. Except it’s not magic, it’s the right science
applied the right way by the people of 3M. Here, your ideas
help shape everyday lives around the globe.
• We nurture the world around us
• We act with uncompromising integrity
• We encourage a culture of coaching and development
• We are endlessly inquisitive
• We create with purpose
• We believe in the power of the whole
3M technology advancing every company
3M products enhancing every home
3M innovation improving every life
3M is all around you: Nearly 90,000 employees, Operations in 70 countries. $32+ Billion in Sales. 100,000+ patents, Products sold in 200 countries, and 5 diverse business groups : Consumer, Health Care, Industrial, Safety & Graphics, and Electronics & Energy.