Overview

VF Corporation is looking for an exceptional Senior Cyber Security Risk Analyst to join our EMEA Information & Cybersecurity team based in Stabio, Switzerland.

Let’s Talk about the Role

The Senior Cyber Security Risk Analyst will support VF’s Global Cyber Security Risk Management Team by ensuring that information security risks associated with complex business operations are within acceptable tolerances.

You will perform information security risk assessments, provide direction and guidance to stakeholders concerning the handling of security risks associated with assessment findings, assist with the design of appropriate risk mitigation strategies, and serve as an audit quality assurance gate for internal and external auditors.

How You Will Make a Difference

You will achieve this by:

  • Collaborating with information technology and other business unit personnel to identify cybersecurity risks associated with current and planned projects.
  • Performing assessments of external party information security controls to ensure they meet or exceed VF’s information security risk management requirements for the services to be provided.
  • Determining information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of VF policies.
  • Recommending solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
  • Providing direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and VF policy requirements.
  • Recording pertinent documentation and communications for all assessments in VF’s online information technology risk management platform.
  • Reporting status of engagements to Global Cyber Security management, project managers, and other business stakeholders as appropriate.
  • Assisting in enforcing information security policies, standards, and procedures.  Review requests for exceptions to security policies and provide recommendations to management.
  • Serving as a focal point for IT SOX in Europe and provide advisory around IT SOX related controls and processes.
  • Researching and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
  • Performing other information security risk management tasks as assigned.

Skills for Success

A formal education and subsequent University Bachelor or Master’s degree in information systems, computer science, or related field are preferred, but we are most interested in your total experience and professional achievements. That’s why:

  • You rely on 5+ years of information security risk management, IT audit, and/or IT controls design and implementation experience.
  • You possess a Certified Information Systems Security Professional (CISSP) certification. Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials can be considered.
  • You have functional understanding of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR and various other privacy laws.
  • You are apt to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices.
  • You possess the ability to influence others through persuasion to arrive at desired outcomes.
  • You communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel.
  • You desire to seize the initiative, operate proactively, and work in a highly independent manner.

Our Guiding Principles

  • Live with Integrity – Be authentic and do the right thing, always
  • Act Courageously –Think and act boldly
  • Be Curious – Explore the world, learn and evolve
  • Act with Empathy – Seek to understand and respect others
  • Persevere – Persist and work together as One VF

What’s in it For You

We’re in the business of unleashing human potential, driven by the ideas, energy and commitment of our people. That’s why we offer comprehensive benefits that encourage mental, physical and financial well-being for all VF associates. When it comes to benefits, we’re the total package.

Free to Be, Inclusion & Diversity 

As a purpose-led, performance driven company, we strive to foster a culture of belonging based on respect, connection, openness and authenticity. We are committed to building and maintaining a workplace that celebrates the diversity of our associates, allowing them to bring their authentic selves to work every day. 

About VF

VF is one of the world’s largest apparel, footwear and accessories companies connecting people to the lifestyles, activities and experiences they cherish through our family of iconic outdoor, active and workwear brands. At the heart of our journey lies our company-wide purpose: We power movements of sustainable and active lifestyles for the betterment of people and our planet. This is our purpose. It’s the reason we come to work every day. It’s a commitment shared by our global associates across all brands. Our purpose unites us and leads us to pursue our goals, together. This is our calling. Learn more at vfc.com

We just have one question. Are you in?

About VF Corporation

Organized in 1899, VF Corporation is a global leader in the design, manufacture, marketing and distribution of branded lifestyle apparel, footwear and accessories. Our highly diversified portfolio of brands spans multiple geographies, product categories, consumer demographics and sales channels. VF relies on its Powerful Brands, Powerful Platforms, One VF approach to business to support its brands, maintain its competitive edge and drives a winning company culture.