Vacancies at SUSE

Experience:

• A number of years of Project Management experience, preferably within IT.
• Proven track record of managing multiple projects across different IT towers.
• Experience with Cyber Security, Information Security, Infrastructure, Data, and Business Applications projects.
• Familiarity with Smartsheet, Google Workspace, and Jira is highly desirable.

Qualifications:

• Should have PRINCE2 certification and some form of Agile skills.
• Relevant educational background in IT or a related field.

Key Responsibilities:

Requirements Gathering:

• Collaborate with business and IT stakeholders to gather and document requirements.
• Translate business needs into technical specifications.

Documentation:

• Create and maintain comprehensive project documentation including:
• Scope Documents: Define the project scope, objectives, deliverables, and success criteria.
• Governance Packs: Establish project governance structures, roles, responsibilities, and decision-making processes.
• Project Charters: Outline project objectives, stakeholders, roles, responsibilities, and initial project plan.
• RACI Matrices: Clarify roles and responsibilities of project team members and stakeholders.
• Status Reports: Regularly update stakeholders on project progress, milestones, risks, and issues.
• Risk Management Plans: Identify, analyze, and plan for potential project risks and mitigation strategies.
• Change Management Plans: Document procedures for managing project changes and impacts.

Stakeholder Management:

• Work closely with stakeholders and technical teams to ensure project alignment and successful delivery.
• Facilitate communication between stakeholders and project teams.

Project Planning:

• Develop detailed project plans outlining scope, timelines, resource allocation, and milestones.
• Use project management tools (e.g., Smartsheet, Jira) to track project progress and performance.
• Conduct regular project review meetings to monitor progress, address issues, and update plans.
• Implement risk management processes to identify and mitigate project risks.
• Ensure all project activities are aligned with business objectives and delivered on time.

Reporting:

• Produce regular project reports using provided tools.
• Keep stakeholders informed of project progress, risks, and issues.
• Provide weekly and monthly project updates demonstrating an accurate view of project status and RAID logs.

RAID Logs and Communication:

• Maintain up-to-date RAID (Risks, Assumptions, Issues, Dependencies) logs.
• Set up and manage relevant calls and communication methods for project updates and stakeholder engagement.

Multi-Project Management:

• Comfortable managing multiple projects simultaneously across different IT domains (Cyber Security, Information Security, Infrastructure, Data, and Business Applications).

PMO Knowledge:

• Utilize PMO knowledge to support project management office tasks and ensure adherence to PMO standards.
• Assist in the development and implementation of PMO processes, templates, and best practices.
• Participate in PMO governance activities, including project reviews, audits, and lessons learned sessions.
• Ensure compliance with PMO standards and methodologies.

go to method of application »

Responsibilities:

• Strategic Leadership: Oversee the strategic direction, design, and execution of SUSE's information security management system (ISMS) processes, ensuring alignment with ISO 27001 and a strong focus on Governance, Risk & Compliance (GRC) principles.
• Stakeholder Engagement: Lead collaborations with senior stakeholders across SUSE to ensure the integration of security processes that effectively meet business objectives while maintaining compliance with stringent GRC requirements.
• Risk Management Oversight: Supervise the development and implementation of advanced 3rd party risk management frameworks to enhance the security resilience of SUSE's supply chain and partner ecosystem.
• Regulatory and Legal Liaison: Act as the primary point of contact for the Head of Privacy, SUSE Data Protection Officer (DPO) and Legal team, driving resolution on complex customer security assessments and high-impact contract negotiations.
• Certification and Compliance Management: Take responsibility for SUSE’s ISO 27001 & ISO 27701 certification processes, ensuring compliance and spearheading continuous improvement initiatives to maintain certification standards.
• Policy and Controls Governance: Lead the creation, revision, and enforcement of comprehensive security policies, procedures, ensuring organizational alignment with industry best practices.
• Risk Assessment Leadership: Direct in-depth risk assessments, develop and approve risk treatment strategies, and ensure the organization's risk management practices align with defined risk tolerances.
• Security Culture Advancement: Oversee the development and delivery of GRC-focused security awareness and training programs, driving a security-centric culture across the organization.
• Performance Monitoring: Establish and review key performance indicators (KPIs) related to GRC security activities, providing high-level strategic insights and recommendations for continuous improvement.
• Project and Program Management: Lead GRC-related projects and programs, ensuring successful planning, execution, and cross-functional collaboration.

Education and Experience Required:

• Proven Experience: Experience in GRC-focused information security roles, with demonstrated leadership capabilities. Experience with implementing ICT laws in practice.
• Educational Background: University Degree in Law
• Leadership in Project Management: Strong people, project and program management skills.