Supply Chain Risk Management Product Owner Job Description
At our organization, we value individual development and entrepreneurial needs by living the flexible working hours model.
* Develop and maintain the Supply Chain Risk Management process aligned with business requirements, security risk appetite, and compliance obligations.
* Define standard cybersecurity requirements for contracts and collaborate with stakeholders to ensure adoption for high-risk suppliers. Review and approve exceptions to standard security clauses based on risk-based justifications.
* Implement a supplier risk tiering and classification framework based on criticality, data access, regulatory exposure, and inherent risk. Ensure consistent application of the tiering model and conduct periodic reviews to adjust for changes in the threat landscape.
* Oversee planning, scoping, and execution of supplier security assessments, including onboarding and recurring reviews. Manage external assessment providers and ensure timely, high-quality outputs. Track remediation plans for non-compliant suppliers and escalate unresolved risks.
* Maintain a central inventory of suppliers with risk tier classification, risk posture, and assessment status. Monitor and ensure service level agreement adherence of managed service providers conducting risk assessments and audits. Serve as the central point of contact for stakeholders regarding supplier risk issues.
* Analyze trends and findings from supplier assessments to drive service enhancements and efficiency. Report key risk indicators and metrics, supporting internal or external audits related to third-party risk. Support regulatory reporting requirements related to supplier security.
Required Skills and Qualifications: Excellent analytical, communication, and project management skills. Strong understanding of supply chain risk management principles, cybersecurity, and regulatory requirements.
Benefits: Flexible working hours, opportunities for professional growth and development, and a dynamic work environment.