Job Description:
This position is responsible for the workload management of the Vendor Cyber Risk Management (VCRM) program, quality assurance, VCRM framework enforcement as well collaboration with internal and external stakeholders to ensure vendor risks are properly identified, communicated, and mitigated. This role requires strong technical expertise in cyber security, assurance & compliance, third party cyber risk management, and continuous improvement.
Key Responsibilities:
Workload management of the Vendor Cyber Risk Management program.
Conduct quality assurance (QA) reviews of vendor assessments performed by the team.
Execute comprehensive security assessments of critical third-party vendors based on a risk-based framework and supportive tools.
Manage risk communication and mitigation strategies with Mars Business Partners and vendors.
Release final assessment reports and coordinate remediation plan approvals.
Maintain and update process runbooks and knowledge base.
Consolidate and report program metrics to the leadership team.
Cross-functional collaboration including Identity Management, Risk Management, Enterprise and Security Architecture, Internal Audit and TPRM teams to ensure program effectiveness.
Suggest recommendations of enhancements and support the respective development and implementation to continuously improve the program.
Context and Scope:
Acts as a subject matter expert in third party cyber risk management with strong communication skills to articulate complex technical messages to business stakeholders.
Manages complex supplier cyber security assessments requiring special attention due to vendor risk profiles and/or business impact. Ensures risk mitigation aligns with Mars’ global standards and risk tolerance.
Pilots new technologies and process improvements to enhance program efficiency and effectiveness.
Collaborates extensively with internal teams and external partners to deliver high-quality vendor risk management services within agreed SLAs.
Job Specifications/Qualifications:
University degree in Information Systems, Computer Science, Cybersecurity, or equivalent.
Infosec/cybersecurity certifications are differentiators.
Knowledge / Experience:
4+ years in cyber security, assurance & compliance, third part cyber risk management, or audit roles.
Practical experience with security frameworks (ISO/IEC 27001, NIST CSF, CIS). Strong project and demand management skills.
Excellent verbal and written communication skills in English. Ability to lead cross-functional teams and influence stakeholders.
Experience managing cyber risk assessments and quality assurance processes is a differentiator.
#TBdigital
Mars Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Mars and has not been reviewed or approved by Mars.
-
Healthcare Strength — The benefits package is positioned as comprehensive, with broad medical coverage and additional protections like life insurance and short- and long-term disability. Mental health support is emphasized, including free mental health services and wellbeing programming under initiatives such as Mars Be Well.
-
Parental & Family Support — Paid parental leave is highlighted as market-leading in the U.S., with an example of 18 weeks fully paid for both parents. Additional family-related leave types such as sick time for caregiving and bereavement leave are also described as part of the overall package.
-
Retirement Support — Retirement offerings are described as strong, including 401(k) matching (with a 6% match cited) and pension plans in some cases. The broader package also references retirement savings options and contributions aligned to local market practice, supporting long-term financial security.
Mars Insights
Similar Jobs
What We Do
For more than a century, Mars, Incorporated has been driven by the belief that the world we want tomorrow starts with how we do business today. This idea is at the center of who we have always been as a global, family-owned business. Today, Mars is transforming, innovating and evolving in ways that affirm our commitment to making a positive impact on the world around us. Across our diverse and expanding portfolio of confectionery, food, and petcare products and services, we employ 133,000 dedicated Associates who are all moving in the same direction: forward. With $40 billion in annual sales, we produce some of the world’s best-loved brands including DOVE®, EXTRA®, M&M’s®, MILKY WAY®, SNICKERS®, TWIX®, ORBIT®, PEDIGREE®, ROYAL CANIN®, SKITTLES®, WHISKAS®, COCOAVIA®, and 5™; and take care of half of the world’s pets through our pet health services AniCura, Banfield Pet Hospitals™, BluePearl®, Linnaeus, Pet Partners™, and VCA™. We know we can only be truly successful if our partners and the communities in which we operate prosper as well. The Mars Five Principles – Quality, Responsibility, Mutuality, Efficiency and Freedom – inspire our Associates to take action every day to help create a world tomorrow in which the planet, its people and pets can thrive.
