At Bayer we're visionaries, driven to solve the world's toughest challenges and striving for a world where 'Health for all Hunger for none' is no longer a dream, but a real possibility. We're doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining 'impossible'. There are so many reasons to join us. If you're hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there's only one choice. Pr Cyber Security GRC Specialist Position Overview: In this pivotal role, you will perform risk management activities to identify, assess, and mitigate cybersecurity risks for Bayer. You will own and manage the cybersecurity framework, measure its effectiveness, and drive maturity to support business needs. Your efforts will be crucial in developing and maintaining key performance indicators (KPIs) and metrics to evaluate the effectiveness of Governance, Risk, and Compliance (GRC) initiatives. You will prepare regular reports for senior management on the status of GRC activities and collaborate with cross-functional teams to integrate GRC principles into business processes and systems. Your expertise will provide consulting across the organization on matters of cybersecurity GRC, ensuring compliance and proactively addressing emerging risks. Acting as a liaison with external auditors and stakeholders on GRC-related matters will also be a key part of your role. YOUR TASKS AND RESPONSIBILITIES: * Perform risk management activities to identify, assess, and mitigate cybersecurity risks; * Own and manage the cybersecurity framework, measuring its effectiveness and driving maturity to support business needs; * Develop and maintain key performance indicators (KPIs) and metrics to measure the effectiveness of GRC initiatives; * Prepare regular reports for senior management on the status of GRC activities; * Collaborate with cross-functional teams to integrate GRC principles into business processes and systems; * Provide consulting across the organization on matters of cybersecurity GRC; * Monitor regulatory changes and industry trends to ensure compliance and proactive risk management; * Act as a liaison with external auditors and stakeholders on GRC-related matters. WHO YOU ARE: Bayer seeks an incumbent who possesses the following: Required Qualifications: * A Bachelor's or Master's degree in information technology, cybersecurity, computer science, or a related field is essential, though relevant working experience may be considered an equivalent; * Proficiency in various cybersecurity tools and software, understanding of network infrastructure and security protocols, and knowledge of threat modeling and risk assessment techniques are helpful; * Extensive experience in managing information security in a corporate or government setting, along with familiarity with information security standards and frameworks such as ISO/IEC 27001 and NIST; * Proven experience with risk management frameworks such as NIST Cybersecurity Framework or ISO 27001; * Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) are desirable; * Leadership skills are essential. Preferred Qualifications: * 7+ years of experience in cybersecurity, with previous experience in a GRC role highly desired. This posting will be available for application until at least May 16, 2025. Employees can expect to be paid a salary between $ 155715.20 - 233572.80. Additional compensation may include a bonus or commission (if relevant). Other benefits include health care, vision, dental, retirement, PTO, sick leave, etc. If selected for this role, the offer may vary based on market data/ranges, an applicant's skills and prior relevant experience, certain degrees and certifications, and other relevant factors. YOUR APPLICATION Bayer offers a wide variety of competitive compensation and benefits programs. If you meet the requirements of this unique opportunity, and want to impact our mission Science for a better life, we encourage you to apply now. Be part of something bigger. Be you. Be Bayer. To all recruitment agencies: Bayer does not accept unsolicited third party resumes. Bayer is an Equal Opportunity Employer/Disabled/Veterans Bayer is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below. Bayer is an E-Verify Employer. Location:United States : District of Columbia : Washington Division:Enabling Functions Reference Code:845687 Contact Us Email:[email protected]