At TE, you will unleash your potential working with people from diverse backgrounds and industries to create a safer, sustainable and more connected world.
Why you should join:
We are seeking a skilled and experienced Senior GRC Analyst, to join the Governance, Risk, and Compliance (GRC) team. The Senior GRC Analyst will be a key member of TE Connectivity's GRC team, working within the TE Information Solutions (TEIS) department to strengthen our cybersecurity posture and risk management framework. This role combines strategic leadership with hands-on execution, focusing on the development and implementation of comprehensive GRC strategies that align with business objectives and drive innovation across the organization. The Senior GRC Analyst will lead the execution and coordination of IT security governance, risk, and compliance processes, ensuring adherence to a wide range of global government and industry regulations and standards.
Role also available in Czech Republic, Poland and Spain
Your main tasks:
- This individual will focus on the execution and coordination of IT security governance, risk and compliance processes related to a broad range of global government and industry regulations and requirements.
- Lead IT control testing and gap analysis in support of TE’s information security programs and compliance efforts, including Sarbanes Oxley (SOX), EU NIS2, UK CyberEssentials, the US Defense Federal Acquisition Regulation Supplement (DFARs) 7012 & Cybersecurity Model Maturity Certification (CMMC).
- Work with business and technical groups to assess IT risks, recommend enhanced governance and controls, perform self-assessments and recommend improvements in control design.
- Create and maintain documentation regarding TE’s security and operational controls to support audits and certifications.
- Oversee and govern security controls that should meet TE global IT policy and regulatory requirements.
- Perform and update IT risk assessments, maintain governance repositories and documentation and leverage security metrics to track progress.
- Ensure data subject to regulations and advanced protection requirements are safeguarded during M&A & IT transformation activities.
- Work with corporate and BU Legal teams to ensure alignment on cyber risk reporting requirements, customer contractual requirements and serve as a point person for segment and BU CIOs.
- Identify gaps in the design and operating effectiveness of controls and identify improvements that reduce risk and/or align TE with industry recognized internal control frameworks.
- Complete security assurance questionnaires from internal and external stakeholders, including customers and cyber-insurers.
Your ideal background:
- General knowledge of information security and controls and related technologies, including identity & access management; database, operating system, and network security; endpoint security; application security; data protection and leakage; vulnerability management; security logging and monitoring.
- Familiarity with regulations relevant to IT security and compliance for a public, global manufacturing company (e.g. SOX, PCI, HIPAA, US and international privacy regulations; US and international cybersecurity regulations and export restrictions such as DFARS, ITAR and UKML) and/or Controls Frameworks (e.g., COSO, COBIT, NIST, ISF Standards of Good Practice, ISO 27001); and industry or regionally specific certifications (e.g., TISAX; UK CyberEssentials).
- Experience with any of the following is a plus: manufacturing and OT/ICS systems; support of or experience with Risk Management Systems (e.g. Archer or others), IT audit; governance for IT outsourcing; risk management frameworks; and Kaizen/lean methodologies.
- Ability to track and manage numerous parallel activities.
- Ability to identify opportunities for continuous improvement and execute on them.
- Ability to work efficiently and independently with minimal supervision (i.e., self-motivated, and willing to stretch to meet important deadlines).
- Ability to work successfully in a cross-functional team environment.
- Bachelor’s degree (High School +4 years)
- Active security certification (CISSP, CISM, CRISC or CISA) or equivalent is a plus
- Years of experience: 4 - 7 years or more
ABOUT TE CONNECTIVITY
TE Connectivity plc (NYSE: TEL) is a global industrial technology leader creating a safer, sustainable, productive, and connected future. As a trusted innovation partner, our broad range of connectivity and sensor solutions enable the distribution of power, signal and data to advance next-generation transportation, energy networks, automated factories, data centers enabling artificial intelligence, and more.
Our more than 90,000 employees, including 10,000 engineers, work alongside customers in approximately 130 countries. In a world that is racing ahead, TE ensures that EVERY CONNECTION COUNTS. Learn more at www.te.com and on LinkedIn, Facebook, WeChat, Instagram and X (formerly Twitter).
WHAT TE CONNECTIVITY OFFERS:
We are pleased to offer you an exciting total package that can also be flexibly adapted to changing life situations - the well-being of our employees is our top priority!
• Competitive Salary Package
• Performance-Based Bonus Plans
• Health and Wellness Incentives
• Employee Stock Purchase Program
• Community Outreach Programs / Charity Events
• Employee Resource Group
IMPORTANT NOTICE REGARDING RECRUITMENT FRAUD
TE Connectivity has become aware of fraudulent recruitment activities being conducted by individuals or organizations falsely claiming to represent TE Connectivity. Please be advised that TE Connectivity never requests payment or fees from job applicants at any stage of the recruitment process. All legitimate job openings are posted exclusively on our official careers website at te.com/careers, and all email communications from our recruitment team will come only from actual email addresses ending in @te.com. If you receive any suspicious communications, we strongly advise you not to engage or provide any personal information, and to report the incident to your local authorities.
Across our global sites and business units, we put together packages of benefits that are either supported by TE itself or provided by external service providers. In principle, the benefits offered can vary from site to site.