Senior GRC Analyst

We are seeking a skilled and experienced Senior GRC Analyst, to join the Governance, Risk, and Compliance (GRC) team. The Senior GRC Analyst will be a key member of TE Connectivity's GRC team, working within the TE Information Solutions (TEIS) department to strengthen our cybersecurity posture and risk management framework. This role combines strategic leadership with hands-on execution, focusing on the development and implementation of comprehensive GRC strategies that align with business objectives and drive innovation across the organization. The Senior GRC Analyst will lead the execution and coordination of IT security governance, risk, and compliance processes, ensuring adherence to a wide range of global government and industry regulations and standards., * This individual will focus on the execution and coordination of IT security governance, risk and compliance processes related to a broad range of global government and industry regulations and requirements.

• Lead IT control testing and gap analysis in support of TE's information security programs and compliance efforts, including Sarbanes Oxley (SOX), EU NIS2, UK CyberEssentials, the US Defense Federal Acquisition Regulation Supplement (DFARs) 7012 & Cybersecurity Model Maturity Certification (CMMC).
• Work with business and technical groups to assess IT risks, recommend enhanced governance and controls, perform self-assessments and recommend improvements in control design.
• Create and maintain documentation regarding TE's security and operational controls to support audits and certifications.
• Oversee and govern security controls that should meet TE global IT policy and regulatory requirements.
• Perform and update IT risk assessments, maintain governance repositories and documentation and leverage security metrics to track progress.
• Ensure data subject to regulations and advanced protection requirements are safeguarded during M&A & IT transformation activities.
• Work with corporate and BU Legal teams to ensure alignment on cyber risk reporting requirements, customer contractual requirements and serve as a point person for segment and BU CIOs.
• Identify gaps in the design and operating effectiveness of controls and identify improvements that reduce risk and/or align TE with industry recognized internal control frameworks.
• Complete security assurance questionnaires from internal and external stakeholders, including customers and cyber-insurers.

• General knowledge of information security and controls and related technologies, including identity & access management; database, operating system, and network security; endpoint security; application security; data protection and leakage; vulnerability management; security logging and monitoring.
• Familiarity with regulations relevant to IT security and compliance for a public, global manufacturing company (e.g. SOX, PCI, HIPAA, US and international privacy regulations; US and international cybersecurity regulations and export restrictions such as DFARS, ITAR and UKML) and/or Controls Frameworks (e.g., COSO, COBIT, NIST, ISF Standards of Good Practice, ISO 27001); and industry or regionally specific certifications (e.g., TISAX; UK CyberEssentials).
• Experience with any of the following is a plus: manufacturing and OT/ICS systems; support of or experience with Risk Management Systems (e.g. Archer or others), IT audit; governance for IT outsourcing; risk management frameworks; and Kaizen/lean methodologies.
• Ability to track and manage numerous parallel activities.
• Ability to identify opportunities for continuous improvement and execute on them.
• Ability to work efficiently and independently with minimal supervision (i.e., self-motivated, and willing to stretch to meet important deadlines).
• Ability to work successfully in a cross-functional team environment.
• Bachelor's degree (High School +4 years)
• Active security certification (CISSP, CISM, CRISC or CISA) or equivalent is a plus
• Years of experience: 4 - 7 years or more

We are pleased to offer you an exciting total package that can also be flexibly adapted to changing life situations - the well-being of our employees is our top priority!

• Competitive Salary Package

• Performance-Based Bonus Plans

• Health and Wellness Incentives

• Employee Stock Purchase Program

• Community Outreach Programs / Charity Events

• Employee Resource Group

TE Connectivity plc (NYSE: TEL) is a global industrial technology leader creating a safer, sustainable, productive, and connected future. As a trusted innovation partner, our broad range of connectivity and sensor solutions enable the distribution of power, signal and data to advance next-generation transportation, energy networks, automated factories, data centers enabling artificial intelligence, and more. Our more than 90,000 employees, including 10,000 engineers, work alongside customers in approximately 130 countries. In a world that is racing ahead, TE ensures that EVERY CONNECTION COUNTS. Learn more at www.te.com and on LinkedIn (https://www.linkedin.com/company/te-connectivity/) ,Facebook (https://www.facebook.com/teconnectivity/) ,WeChat, (http://www.te.com.cn/chn-zh/policies-agreements/wechat.html) Instagram andX (formerly Twitter). (https://twitter.com/TEConnectivity), Across our global sites and business units, we put together packages of benefits that are either supported by TE itself or provided by external service providers. In principle, the benefits offered can vary from site to site.