abra is looking for an experienced professional to join a Cyber Security Supply Chain Risk Management role. The position focuses on managing cybersecurity risks within the supply chain and includes:
* Sending security questionnaires to vendors and tracking remediation of identified gaps.
* Coordinating vendor sign-off on security documents and ensuring compliance with organizational information security requirements.
* Collaborating with various internal stakeholders: Infrastructure, Architecture, Networking, Business Units, Compliance, Legal, Vendors, and Technology Partners.
* Working in a regulated environment, adhering to strict information security standards and policies.
* Sending security questionnaires to vendors and tracking remediation of identified gaps.
* Coordinating vendor sign-off on security documents and ensuring compliance with organizational information security requirements.
* Collaborating with various internal stakeholders: Infrastructure, Architecture, Networking, Business Units, Compliance, Legal, Vendors, and Technology Partners.
* Working in a regulated environment, adhering to strict information security standards and policies.
Requirements:
* Minimum of 3 years of experience in Information Security and Cybersecurity – mandatory.
* Familiarity with supply chain risks, cybersecurity, financial, operational, technological, and regulatory risks.
* Knowledge of regulatory requirements and relevant standards such as Privacy Protection Law, PCI-DSS, SOX, ISO27001, SOC2 – advantage.
* Relevant certifications in IT and Information Security (e.g., CSMP, Cyber Security, GRC – Governance, Risk & Compliance) – advantage.
* Experience with supply chain cybersecurity questionnaires (Israeli National Cyber Directorate) and/or automated questionnaire distribution platforms – advantage. Skills & Competencies:
* Strong teamwork abilities and experience working with internal and external stakeholders.
* Excellent interpersonal communication skills with the ability to provide clear, professional responses regarding supply chain security topics.
* Quick learner, able to handle complex challenges in a dynamic, fast-paced environment.
* Self-motivated with effective time management and a broad organizational perspective.
* Fluent in Hebrew and English, with excellent verbal and written communication skills.
* Minimum of 3 years of experience in Information Security and Cybersecurity – mandatory.
* Familiarity with supply chain risks, cybersecurity, financial, operational, technological, and regulatory risks.
* Knowledge of regulatory requirements and relevant standards such as Privacy Protection Law, PCI-DSS, SOX, ISO27001, SOC2 – advantage.
* Relevant certifications in IT and Information Security (e.g., CSMP, Cyber Security, GRC – Governance, Risk & Compliance) – advantage.
* Experience with supply chain cybersecurity questionnaires (Israeli National Cyber Directorate) and/or automated questionnaire distribution platforms – advantage. Skills & Competencies:
* Strong teamwork abilities and experience working with internal and external stakeholders.
* Excellent interpersonal communication skills with the ability to provide clear, professional responses regarding supply chain security topics.
* Quick learner, able to handle complex challenges in a dynamic, fast-paced environment.
* Self-motivated with effective time management and a broad organizational perspective.
* Fluent in Hebrew and English, with excellent verbal and written communication skills.
This position is open to all candidates.
