As a Supply Chain Security Engineer, you will:
- Support Fortinet’s Supply Chain Risk Management program.
- Coordinate IT security governance, risk and compliance activities through Fortinet supply chain partners.
- Be responsible for supply chain partners compliance with Fortinet’s Trusted Supplier Program requirements.
- Conduct risk analysis and gap assessment of Fortinet’s supply chain partners security policies and practices.
- Perform supply chain partners’ audit by processing security assessments and coordinate with internal and external functions and audit resources.
- Provide supply chain partners recommendations to address TSP compliance issues.
- Monitor security posture of supply chain partners’ network environment including but not limited to daily logs review, potential security events checks and vulnerability management.
- Support and collaborate with Fortinet’s supply chain partners to process incident management including incident investigation and response, recommendations and reporting.
An insightful and influential collaborator to join our team. We encourage you to apply for this position if you have the following qualities:
- Bachelor’s degree in Information Security/Systems, Computer/Electronic Engineering, Communications Engineering or related field (or foreign equivalent).
- Minimum of five (5) years of experience as an Information Security or Compliance Analyst, Systems Engineer, IT Administrator/Analyst, or related occupation.
- Experience in electronics supply chain management or contract manufacturing (a plus).
- Experience in design and implementation of information security policies and controls.
- Compliance Management (ISO, SOC2, GDPR, NIST, etc.).
- Risk Assessment, Risk Mitigation.
- Information Security Audit.
- Familiar with ISO 27001 (must), NIST SP 800-161 and/or NIST SP 800-53 (a plus).
- CISSP, CISM, or CISA (a plus).
- Experience in cyber security incident management.
- Travel Requirements: Up to 10%.