Director Cyber Risk & Compliance

Director - Enterprise Cyber Security Risk, Compliance, Employee Education & Resilience

Important Company Update - Please Read Before Applying.On January 22, 2025, Aptiv announced its decision to separate its EDS division to form two separate independent companies:https://www.automotiveworld.com/news-releases/aptiv-announces-intention-to-separate-its-electrical-distribution-systems-business/

This role is within the EDS segment, and you will be joining that segment as it becomes its own entity, with a rich heritage and proven track record as a global leader in low and high voltage power and signal distribution systems. Our solutions are central to enabling the next generation of electrified, automated, and connected vehicles, and we are committed to innovation, sustainability, and engineering excellence. We are looking for talented individuals who are excited by the opportunity to help shape the future of EDS and delivering industry-leading solutions to the world's top automotive manufacturers.

Why join EDS? You'll have the opportunity to work on cutting-edge applications, develop breakthrough technologies, and deliver innovative solutions to some of the world's leading automotive brands. See your work come to life on the road-helping make mobility safer, greener, and more connected. Ready to shape the future of mobility with us?

YOUR ROLE

Reporting into the Cyber Security Lead, the role of Director - Enterprise Cyber

Security Risk, Compliance, Education & Resilience to lead EDS's Cyber Security Compliance, Risk

Management and Disaster Recovery team. This team will drive with key partners, the business

security governance and risk efforts of our organization, subsidiary companies & future

acquisitions, establishing and maintaining a high standard of security risk & compliance management

As a large global organization, EDS has requirements for compliance to various industry, regulatory, legislative and regulatory, legislative and customer driven standards, where creates a lot of complexity in Enterprise Cyber Security for policies, processes, controls and solutions that can help our organization with our compliance efforts and manage security risks. This role will be pivotal to managing and maintaining a best in class Security Compliance Framework, Risk Management Framework and Framework for verified disaster recovery readiness.

In your daily job you will:

• Accountable for managing EDS Enterprise Cyber Security compliance, risk and continuity activities, processes, and procedures to meet defined security requirements, policies and regulations.
• Working with IT and business leadership to develop and implement strategies for governance and compliance related to corporate-wide security initiatives

• Advising & reporting to executive leadership to ongoing security compliance requirements, status, ensuring awareness of key risks, challenges and new compliance developments.
• Understanding of technology enabled organizations and operating models.
• Execute governance reporting on EDS risk & compliance through appropriate means that convey both cyber and its relation to business risk.
• Oversight and operational management of EDS's GRC capabilities for alignment and co-ordination of security policies, controls, services and compliance
• Developing a security risk & compliance aware culture ensuring stakeholders are informed of changes to the regulatory and compliance landscape, the impact and stakeholder obligations
• Work with the organization to assess, evaluate and co-ordinate continuous improvements of security policies, controls, solutions & processes in EDS, to remain aligned with global, industry, regulatory or customer driven security standards.
• Driving governance processes & controls for business continuity & resiliency, aligned with criticality and sensitivity of infrastructure and assets
• Maintain relationships with key external providers and customers as needed to ensure compliance
• Developing metrics and compliance dashboards to monitor progress for security initiatives, measure effectiveness of security controls, and communicate progress in reducing risk
• Co-ordinate responsibilities, deliverables and status on Cyber Security compliance standards
• Current industry standards applicable to EDS ( either globally or at site level ) include TISAX, IATF, SOX, GDPR, NIST
• Manage EDS's Security Education & Training program, to contribute to education and training efforts, that support security risk reduction and compliance standards, using metrics to drive effectiveness of the program in changing behavior

YOUR BACKGROUND

The successful candidate will be an overall effective leader, communicator and collaborator. The candidate will possess energy, the ability to create enthusiasm for continuous improvement within EDS on our Security Risk, Compliance, Employee Education and Resilience journey,

The successful candidate for this position will have:

• 10+ years of experience in information security with an emphasis on audit, risk management, and/or compliance
• Experience and understanding of data security concepts such as data access governance, data classification, data retention, rights management and data loss prevention
• Experience managing cybersecurity compliance and risk management programs in addition to managing the proven recovery of key systems needed for continuity readiness.
• Experience managing teams of 5+ employees
• Proven knowledge and experience in IT & Security compliance standards and/or IT Security Frameworks e.g. ISO, SOX, TISAX, NIST, CIS
• Proven experience in Risk Management, Compliance Management or Auditing activities
• Strong knowledge in at least one IT Security domain ( cloud, infrastructure, device, data, identity, networking ) highly desirable
• Experience working in a global organization, collaborating with international teams and outsourced service providers a plus
• Ability to create constructive relationships, influence, and communicate to IT, engineering & business audiences at all levels
• Ability to provide leadership for complex, cross-functional initiatives
• Experience working in a team-oriented, collaborative environment
• Experience writing and updating technical documentation
• Industry recognized qualifications in IT Security / Risk domains an advantage

WHY JOIN US?

• You can grow at EDS. EDS provides an inclusive work environment where all individuals can grow and develop, regardless of gender, ethnicity or beliefs.
• You can have an impact. Safety is a core EDS value; we want a safer world for us and our children, one with: Zero fatalities, Zero injuries, Zero accidents.
• You have support. We ensure you have the resources and support you need to take care of your family and your physical and mental health with a competitive health insurance package.

YOUR BENEFITS AT EDS:

• Private health care effective day 1 of employment
• Life and accident insurance
• Paid Time Off (Holidays, Vacation, Designated time off, Parental leave)
• Relocation assistance may be available
• Learning and development opportunities
• Discount programs with various manufacturers and retailers
• Recognition for innovation and excellence
• Opportunities to give back to the community
• Tuition Reimbursement
• Adoption Assistance
• Fertility Coverage

APPLY TODAY, AND TOGETHER LET'S CHANGE TOMORROW!

"EDS is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law"

Privacy Notice - Active Candidates: https://www.aptiv.com/privacy-notice-active-candidates

Aptiv is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability status, protected veteran status or any other characteristic protected by law.