Job Description

Governance, Risk & Compliance Risk AnalystWould you like to innovate with the latest energy technology?Do you enjoy being part of a successful team?Join our Digital Technology teamWe operate at the heart of the digital transformation of our business. From Digital Engineering to enabling employee success, the Digital Technology team is driven to provide the best products and service.Partner with the bestResponsible to support and contribute to the Baker Hughes (BH) third-party security risk program, in support of company strategic cyber security programs and while ensuring compliance with applicable standards and regulatory requirements like ISO-27001, PCI-DSS, CIS (Center for Internet Security), NIST 800-53.As a Governance, Risk & Compliance Risk Analyst you will be responsible for

• Supporting and contributing to third-party security risk management in complex engineering and industrial environments and perform third-party security risk assessments.
• Ensuring suppliers comply with BH information and cyber security policies.
• Leading and performing security risk assessments of third-party suppliers.
• Tracking supplier assessment results until closure.
• Identifying high risk suppliers based on BH priorities & policies.
• Identifying areas of technical and process improvements, interaction with relevant company functions.
• Maintaining timely communication with Supplier, Business, and Sourcing references.
• Supporting and contributing to KRI metrics to help drive the third-party security risk program and reporting.
• Supporting and contributing to the development and implementation of third-party security risk requirements including policies, procedures, and standards.
• Providing subject matter expertise on issue remediation for security gaps identified in security risk assessments.
• Leading and supporting training sessions on third-party security risk to internal teams and stakeholders.
• Delivering timely and concise communication, including developing and producing reports, illustrating status, trends, and action plans to support the third-party security risk program.

To be successful in this role you will:

• Have a bachelors degree in a Computer Science or STEM-related field.
• Have minimum 5 years of professional experience in Third Party Risk Management.
• Have an exposure to industry compliance frameworks and compliance regulations (ISO27001/2, NIS 2, NIST CSF/800-53).
• Be excellent interpersonal and team player skills, able to mediate conflicts, recognize options, propose, and implement solutions.
• Be self-starter requiring minimal supervision.

Work in a way that works for youWe recognize that everyone is different and that the way in which people want to work and deliver at their best is different for everyone too. In this role, we can offer the following flexible working patterns:

• Working flexible hours - flexing the times when you work in the day to help you fit everything in and work when you are the most productive

Working with usOur people are at the heart of what we do at Baker Hughes. We know we are better when all of our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other.Working for youOur inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we have to push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect:

• Contemporary work-life balance policies and wellbeing activities
• Comprehensive private medical care options
• Safety net of life insurance and disability programs
• Tailored financial programs
• Additional elected or voluntary benefits

#digitalpilot

Baker Hughes