IT Product Security Coordinator

Role Summary

The role of IT Product Security Coordinator plays a vital role in protecting the organization’s proprietary and sensitive information The role will work with the MML product groups and engineering leads to ensure customer security requirements and protocols are effectively implemented and supported across all locations. The IT Product Security Analyst will work with various departments & groups to ensure security controls are implemented as per Magna’s policies, legislation and compliance regimes.

Key Responsibilities

•  The IT Product Security Coordinator primarily role is to implement and monitor the security controls that protect the organization’s valuable assets. The Security Analyst is responsible for coordinating the day-to-day activities required to ensure compliance and risk mitigation. Duties and responsibilities include: 
• Serve as the product security solutions lead for the MML group 
• Provide guidance and advice to engineering, plant and IT personnel on product security initiatives 
• Identify, categorize and classify all relevant products and maintain an up to date risk register. 
• Ensure standardized processes and procedures are identified and documented across the MML divisions for global security solutions. 
• Work with the GISO to implement the Global Product Security Strategy for MML Group. 
• Participate in the PCCC (Product Cybersecurity Collaboration Council) to ensure best practices are shared across Magna groups. 
• Supports the MML Divisions with information security activities while working with various departments to protect Company’s valuable assets and intellectual property 
• Leads efforts to install security controls and implement solutions to protect systems and infrastructure 
• Monitors information security controls in order to improve security posture 
• Supports risk management activities and provides input on mitigation controls 
• Oversees the implementation of the Information Security Management System (ISMS) based on industry standards like ISO 27001/2 and NIST-800-53 
• Ensures the alignment and compliance with common security management frameworks, regulatory requirements, industry leading practices, OEM requirements and global security policies 
• Provides guidance and competent advice to different business units in areas of information technology and cyber security as it relates to projects and strategic initiatives 
• Assists in the development of necessary and appropriate operating procedures related to information security 
• Assists with security awareness campaigns and training based on policies, standards, and guidelines 
• Assists with the investigation of security breaches and other cyber security incidents 
• Assists with internal and external security audits and ensure compliance with security controls 
• Actively seeks resolution, mitigation and closure of identified security risks and deficiencies 
• Resolves urgent situations outside the business hours when required, such as security related incidents 
• Stays current on IT security news to stay up to date with the evolving threat landscape 

The above is intended to describe the general content of and the requirements for the performance of this position. It is not to be construed as an exhaustive statement of duties, responsibilities, or requirements.

Key Qualifications/Requirements

• Hands on knowledge in Computer Science, Computer Security, Information Systems or Information Security 
• Experience with ISMS implementation is a plus 
• Knowledge of security standards, frameworks and regulations such as ISO 27001 and 27002, NIST 800-53, NIST Cybersecurity Framework, ISO21434, GDPR, TISAX, TIPSR, SOX, ITIL, COBIT or similar. 
• Familiar with security vulnerabilities, exploits, malware, etc. as they relate to Incident Response 
• Accredited certifications a plus, such as: CISSP, OSCP, GCIH (Certified Incident Handler) GCIA (Certified Intrusion Analyst) CEH (Certified Ethical Hacker) CCNA (Cisco Certified Network Associate) 
• Automotive experience is a plus 
• Outstanding communication skills are required an ability to manage multiple projects 

#LI-JF1

Additional Information

Awareness. Unity. Empowerment.

At Magna, we believe that a diverse workforce is critical to our success. That’s why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email to comply with GDPR requirements and your local Data Privacy Law.