Lead Analyst - Cybersecurity (SITRM)

Lead Analyst - Cybersecurity (SITRM) at Sysco Poland focused on executing and supporting the global Cybersecurity Supplier IT Risk Management program. Responsibilities include performing security risk assessments of suppliers across lifecycle stages, acting as the primary contact for international supplier assessments, educating and communicating cyber risk to global vendor management, collaborating with stakeholders to review cybersecurity terms in supplier agreements, supporting program enhancements and technical requirements, training team members on updated processes, and preparing monthly program metrics and remediation plans to reduce cyber risk. Requires 6+ years in IT audit or third-party security risk management, deep knowledge of application, network, and cloud security, proficiency with third-party risk frameworks/tools (Archer preferred), and relevant security certifications (e.g., CISSP, CISM, CISA, CTPRP/CTPRA, ISSAP/ISSEP). Hybrid work model with Kraków office as primary location.