• Posted 1 month ago
  • Updated 4 weeks ago

Senior Manager, Cyber Supply Chain Risk Management - (REMOTE)

  • Labcorp
  • Durham, NC

Full Time

  • No Travel Required

Job Description

The Senior Manager, Cyber - Supply Chain Risk Management (C-SCRM) works within the Office of Information Security . The successful candidate will be responsible for managing cyber risks in the supply chain . This exciting role requires an appetite for learning, forward-thinking, superior attention to detail, the ability to meet tight deadlines, great organizational skills, and the ability to work in a highly collaborative work environment. The candidate will be r esponsible for supporting and leading all C-SCRM processes and activities. The candidate will d rive strategic delivery of solutions and l everage expertise and collaborate across all lines of business. In the course of your duties, you will:

DUTIES AND RESPONSIBILITIES:

  • Provide expertise and thought leadership in cyber supply chain risk management and assess Lab c orp's supply chain program, policies, and procedures .
  • Ensure the C-SCRM aligns with the Technology Risk Management and Operational Risk Management programs.


  • Act as the subject matter expert to senior stakeholders and /or other team members and resolve C-SCRM process-level escalations coming from internal partners.
  • Lead and develop a scalable assessment team that will perform supply chain risk assessments, including research, analysis, identification of risk, and continuous monitoring of supply chain vulnerabilities .
  • Establish and report on KRIs and KPIs to measure cyber supply chain risk management.
  • Prepare reports, briefings, point papers, reviews, and oral presentations as may be directed to translate the results from the analysis to executive decision-makers that drive meaningful decisions and outcomes.
  • Drive change and challenge existing processes for improvement ensuring the program a lign s with better industry practices .
  • Keep management and staff informed of the most up-to-date information regarding supply chain risk management best practices and any relevant regulatory, business, and competitive environment that might affect Lab c orp's C-SCRM program .


  • Establish and monitor performance management tools to identify risk and program performance .
  • Communicate with Senior Managers, Business Stakeholders, multiple lines of Defense, business process owners, and functional areas to build and maintain strong partnerships.
  • Assist with C-SCRM oversight and management of program framework, including policies and SOPs .
  • Operate with a limited level of direct supervision and exercise independence of judgement and autonomy.


  • Provide support for C-SCRM audit and regulatory requests and queries .
  • Lead internal training sessions, as required, for internal and external assessors on C-SCRM process, documentation standards and evidence retention requirements.


JOB QUALIFICATIONS / REQUIRED SKILLS:

6-10 years of relevant experience with a global Fortune 500 firm in the fields of Cyber Supply Chain/ Third Party /Vendor Risk Management, technology risk management , or audit and controls.

Broad knowledge of other risk areas, with strong understanding of supplier or third-party risk impact in Healthcare or Life Sciences a plus .

Demonstrate d understanding of operational capabilities of suppliers across applicable business types .

Acute understanding of the Issue Management process - issue identification, assessing/assigning issue severity, and issue remediation .

Ability to work collaboratively within the business and across business lines within a fast-paced environment.

Ability to organize and prioritize multiple deliverables while remaining flexible and open to change .

Excellent communication skills in English, both oral and written, with the ability to articulate complex and sensitive issues to management.

Working knowledge of governance risk and control applications - Archer, Fusion RM , and ServiceNow , etc.

Strong technical background and a proven track record of efficient workflow design .

Minimum: bachelor's degree and or equivalent military experience.

Industry recognized certification in third party management or risk management, preferred (CTPRP, CTPRA, CRISC, CISA)

Labcorp is proud to be an Equal Opportunity Employer:

As an EOE/AA employer, the organization will not discriminate in its employment practices due to an applicant's race, age, color, religion, sex, national origin, sexual orientation, gender identity, disability or veteran status.

For more information about how we collect and store your personal data, please see our Privacy Statement .