Cyber Risk Lead Mergers & Acquisitions
Lima, Lima, PE
hace 5 días
source : WHATJOBS

Where you fit in

The Information Risk Management function is accountable for Information Risks and Information Security in the Shell Group as an independent function within Shell’s IDT function.

Shell’s target is to become a net-zero emissions energy business by 2050, in step with society’s progress in achieving the goal of the UN Paris agreement on climate change.

Help reshape Shell and be at the fore front of the energy transition as a leader in the Information Risk Management (IRM) Mergers and Acquisition (M&A) team.

The IRM M&A team supports the inorganic growth of Shell by contributing to the selection and acquisition of cutting-edge companies and the divestiture of the legacy companies in line with Shell’s strategy and the energy transition agenda.

What’s the role?

In the IRM M&A team, you will be working with confidential information about new deals, you will perform due diligence on target acquisitions, translate information risks into risk acceptances, provide input to the deal value with estimate costs of remediation together with the Information and Data Technology (IDT) deal teams.

Due to confidentiality requirements, the IRM M&A cyber risk lead will often work as only IRM subject matter on deals and needs to cover the full breadth of IRM risks.

This stretch will help you nurture and grow your skills and knowledge. Post-deal completion the M&A leader will engage with internal and external stakeholders to identify and propose a remediation plan to address the high risks.

Key Accountabilities :

Work independently as a subject matter expert (SME) with a cross functional discipline involved in deals including Finance, Legal, HR, IT, Contracting and Procurement in evaluating deals

Analyze and provide opinion on the deal by doing research using open-source intelligence (OSINT), available information from target organization and interviews with target.

Act as the IRM M&A SME, engage with internal and external stakeholders and perform risk assessment pre- and post-deal.

Propose mitigation action and remediation costs in consultation with different groups. Further, identify the residual risk and document the risk acceptance.

Be an ambassador on risk management and cyber security, by raising awareness and understanding of risks and threats to participants in the deal team.

Act as advisor to the respective line(s) of business (LOB) IRM and IDT Managers on all information risk matters related to mergers, acquisitions and divestments.

Understand Business strategy, and linkage with the IRM strategy.

When needed, leads or represents M&A and / or the IRM Function in Shell internal projects.

What we need from You

At least a Bachelor’s Degree in either Engineering, Technical, or equivalent. Non-technical degrees are also acceptable as long as it’s paired with certifications such as CISA, CISM, CISSP, etc.

Language requirement : Mandarin - Good proficiency in reading, writing and speaking.

At least 7 - 10 years’ experience in risk management or security functions, preferably aligned with control framework best practices and risk management.

Competent with IRM practices and processes, legal and regulatory and control requirements, IT controls framework practices, cyber defense, audit practices.

Advanced understanding of internal and external IT security standards, and relevant legal compliance aspects.

Experience working with the Legal department, and understanding of regulatory requirements (anti-trust regulations, competitive sensitive information, etc.)

Understands business models, the business strategy, speaks the language of the business and understands deal dynamics.

The ability to balance IRM needs and standards considering risk and affordability to the Business as well as business impact.

Learner mindset, working and assessing new technologies and ways of working in new domains (startup culture)

Good stakeholder management skills and excellent communication skills. Able to communicate complex and technical issues in simple terms and translate to business impact.

Ability to work under pressure and deliver on time following strict deadlines.

Experience with mergers, acquisitions and divestments is an advantage.


Please note : We occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date.

Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Royal Dutch / Shell Group companies around the world.

The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell.

Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand.

Shell is an Equal Opportunity Employer.

Reportar esta oferta

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.

Mi Correo Electrónico
Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
Formulario de postulación