Job Description:
As a key member of our Vendor Cyber Risk Management (VCRM) team, you will directly contribute to safeguarding the enterprise by identifying and mitigating the cyber risks introduced by third-party relationships.
Your core responsibility will be to conduct comprehensive cyber risk assessments on our vendors, analyzing their security posture to protect our business. You will drive the risk remediation lifecycle—from identifying and documenting security gaps (Findings) to collaborating with business stakeholders and vendors on effective corrective action plans. This role requires a blend of technical cybersecurity knowledge, an assurance mindset, and strong communication skills to articulate risk and guide stakeholders toward a more secure partnership.
Key Responsibilities:
Execute comprehensive cyber risk assessments of third-party vendors using Mars’ established risk-based framework and tools.
Monitor vendor’s cybersecurity posture using third-party assessment tools.
Identify, document, and manage cybersecurity risks and issues within our issue tracking system.
Collaborate with internal and external stakeholders (vendors) on remediation plans and risk mitigation.
Support user attestation, validating active accounts, and reporting discrepancies.
Perform periodic user attestation activities on strategic partners to ensure access rights are appropriate and authorized, and report discrepancies.
Execute peer review of VCRM assessments conducted by team members.
Update and maintain process runbooks as well as knowledge base
Suggest process improvements and automation opportunities to enhance program efficiency.
Context and Scope:
Works under guidance of Senior Analysts and Team Leads to ensure accurate and timely execution of vendor cyber risk assessments and issue management activities.
Communicates effectively with vendors and internal stakeholders to facilitate remediation and compliance.
Supports continuous improvement initiatives within the VCRM program.
Collaborates with cross-functional teams to ensure data accuracy and program alignment.
Job Specifications/Qualifications:
University degree in Information Systems, Computer Science, Cybersecurity, or equivalent.
Infosec/cybersecurity certifications are differentiators.
Knowledge / Experience:
2+ years in cyber security, assurance & compliance, third part cyber risk management, or audit roles.
Knowledge in cyber security frameworks (ISO/IEC , NIST CSF, CIS).
Strong attention to detail and organizational skills. Good verbal and written communication skills in English. Ability to collaborate effectively within teams.
Work with over 140,000 diverse and talented Associates, all guided by the Five Principles.
Join a purpose driven company, where we’re striving to build the world we want tomorrow, today.
Best-in-class learning and development support from day one, including access to our in-house Mars University.
An industry competitive salary and benefits package, including company bonus.
#TBdigital
Skills Required
- University degree in Information Systems, Computer Science, Cybersecurity, or equivalent
- 2+ years in cyber security, assurance & compliance, third-party cyber risk management, or audit roles
- Knowledge in cyber security frameworks (ISO/IEC, NIST CSF, CIS)
- Infosec/cybersecurity certifications
Mars Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Mars and has not been reviewed or approved by Mars.
-
Healthcare Strength — The benefits package is positioned as comprehensive, with broad medical coverage and additional protections like life insurance and short- and long-term disability. Mental health support is emphasized, including free mental health services and wellbeing programming under initiatives such as Mars Be Well.
-
Parental & Family Support — Paid parental leave is highlighted as market-leading in the U.S., with an example of 18 weeks fully paid for both parents. Additional family-related leave types such as sick time for caregiving and bereavement leave are also described as part of the overall package.
-
Retirement Support — Retirement offerings are described as strong, including 401(k) matching (with a 6% match cited) and pension plans in some cases. The broader package also references retirement savings options and contributions aligned to local market practice, supporting long-term financial security.
Mars Insights
What We Do
For more than a century, Mars, Incorporated has been driven by the belief that the world we want tomorrow starts with how we do business today. This idea is at the center of who we have always been as a global, family-owned business. Today, Mars is transforming, innovating and evolving in ways that affirm our commitment to making a positive impact on the world around us. Across our diverse and expanding portfolio of confectionery, food, and petcare products and services, we employ 133,000 dedicated Associates who are all moving in the same direction: forward. With $40 billion in annual sales, we produce some of the world’s best-loved brands including DOVE®, EXTRA®, M&M’s®, MILKY WAY®, SNICKERS®, TWIX®, ORBIT®, PEDIGREE®, ROYAL CANIN®, SKITTLES®, WHISKAS®, COCOAVIA®, and 5™; and take care of half of the world’s pets through our pet health services AniCura, Banfield Pet Hospitals™, BluePearl®, Linnaeus, Pet Partners™, and VCA™. We know we can only be truly successful if our partners and the communities in which we operate prosper as well. The Mars Five Principles – Quality, Responsibility, Mutuality, Efficiency and Freedom – inspire our Associates to take action every day to help create a world tomorrow in which the planet, its people and pets can thrive.
