At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where ,Health for all, Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.

IT Security Consultant 

POSITION PURPOSE:

The Candidate is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice for security products. The position holder has leadership ability to back security decisions with research and communicate the why, and articulate several options, with pros and cons for each, with recommendations.

They must have the ability to identify security gaps, develop controls complying to security standards and regulatory requirements of data (e.g., Data Privacy). The position holder utilizes Cyber Security and Risk management Strategy and processes to ensure, and at times lead, risk assessments and management of digital risks as per Bayer policies and regulations. The successful candidate will possess a technical foundation with a creative and collaborative mindset to help the team achieve key objectives of the Risk Assessment team.

YOUR TASKS AND RESPONSIBILITIES:

• Partner with CSRM stakeholders, Information Technology (IT) and business to develop security strategies and Risk Assessment strategies for Bayer globally in support of business goals.
• Assist in the development of security policies, standards, patterns, and guidance.
• Update job knowledge constantly by tracking and understanding emerging security technologies, solutions, practices, and standards, participating in educational opportunities, reading professional publications.
• Manage IT Security, legal and regulatory risks by performing IT Security RiskAssessments and recommending the appropriate security controls to address the gaps that are not in line with Bayer Policies and regulatory requirements.
• Provide support and recommendations for the selection, security review, and lifecycle management of third-party services, products, and solutions; Provide IT Security consulting services to stakeholders, IT, Business Teams, and projects.
• Contribute to translation of risks resulting from usage of information technology which are internally and externally regulated into the digital environment.
• Perform cloud security assessments and recommends measures over a large scale multi cloud environment.
• Understanding of emerging technologies in IT such as a Cloud Platform and Mobile Bring Your Own Device as well as the associated security risks.
• Complete department responsibilities within the evaluation of vendor proposals, conduct process analyses, review information security architectures, and recommend mitigation measures to exceptions not meeting Company policies and industry standards
• Support and execute job duties related to IT Security exception process. Includes managing and enhancing process, providing remediation guidance, reporting KPIs, etc.

WHO YOU ARE:

• Bachelor’s degree with 12+ years of relevant Information Technology/Security experience or relevant Information Technology/Security experience
• Strong foundational knowledge of all domains of security
• Demonstrated experience in managing critical situations as well as analytical, conceptual, and technical exposure and understanding of Amazon Web Services, Microsoft Azure and Google Cloud Platform
• Possess clear understanding of security protocols and standards and have experience with software and security architectures.
• Knowledge of cloud networking architecture, cloud operations, security, automation, and orchestration.
• Experience with reviewing network, firewall and endpoint architectures, configurations, policies, procedures, and technical capabilities as well as physical devices such as servers, IoT and drones.
• Solid understanding of NIST (National Institute of Standards and Technology) and ISO (International Organization for Standardization) standards.
• Strong collaboration skills and ability to work in both cross-functional and global teams.
• Working knowledge and experience with GRC tools like RSA Archer
• Demonstrated knowledge and experience with managing complex projects
• Process oriented and strong documentation, communication and interpersonal skills
• Strong written and presentation skills
• Certifications in any of the following is a plus – CISSP, CCSP, ISSAP, ISSEP, ISSMP, CISM, CISA

Bayer does not charge any fees whatsoever for recruitment process. Please do not entertain such demand for payment by any individuals / entities in connection with recruitment with any Bayer Group entity(ies) worldwide under any pretext. 
Please don’t rely upon any unsolicited email from email addresses not ending with domain name “bayer.com” or job advertisements referring you to an email address that does not end with “bayer.com”. For checking the authenticity of such emails or advertisement you may approach us at HROP_INDIA@BAYER.COM.