Job Description

At Bayer we're visionaries, driven to solve the world's toughest challenges and striving for a world where 'Health for all Hunger for none' is no longer a dream, but a real possibility. We're doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining 'impossible'. There are so many reasons to join us. If you're hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there's only one choice.

Pr Cyber Security GRC Specialist

Purpose:

As a Pr Cyber Security GRC Specialist, you will be responsible for developing, implementing, and managing cyber security Governance, Risk, and Compliance (GRC) initiatives within Bayer. You will measure adherence to Bayer policies and procedures based on industry standards, assess compliance of Bayer processes, monitor critical IT security deliverables, and provide audit support for cybersecurity teams. Additionally, you will manage IT security exceptions and recommend controls to address gaps through data and security risk assessments. You will play a key role in our data security initiatives, specifically focusing on developing, implementing, and improving Data Classification, Crown Jewel Management, and Data Discovery & Inventory capabilities. Your role is critical in safeguarding our organization's sensitive information and ensuring compliance with data protection regulations.

YOUR TASKS AND RESPONSIBILITIES:

• Perform risk management activities to identify, assess, and mitigate cyber security risks for Bayer, including owning and managing the cybersecurity framework;

• Develop and maintain key performance indicators (KPIs) and metrics to measure the effectiveness of initiatives;

• Prepare regular reports for senior management on the status of activities;

• Collaborate with cross-functional teams to integrate Cyber Security Assurance principles into business processes and systems;

• Provide consulting across the organization on matters of cybersecurity Assurance;

• Monitor regulatory changes and industry trends to ensure the organization remains compliant and proactive in addressing emerging risks;

• Act as a liaison with external auditors and stakeholders on related matters;

• Oversee strategic initiatives and topics;

• Continue improvements to achieve a robust data classification framework that categorizes data based on sensitivity and risk;

• Collaborate with stakeholders to ensure proper classification of data assets across the organization;

• Regularly review and update classification policies to align with regulatory changes and business needs;

• Identify and manage the organization's critical data assets, referred to as "crown jewels";

• Establish and enforce security protocols to protect these high-value data assets from unauthorized access and breaches;

• Conduct regular assessments and audits of crown jewel data to ensure compliance with security standards;

• Lead efforts to discover and inventory all data across the organization, ensuring comprehensive visibility of data assets;

• Utilize advanced tools and technologies for data discovery to identify sensitive data and its locations;

• Maintain an up-to-date inventory of data assets, including their classification and protection measures;

• Work closely with IT, compliance, and legal teams to ensure alignment on data protection strategies;

• Serve as a point of contact for data security inquiries and provide guidance to teams across the organization;

• Ensure strong collaboration and alignment to GRC capabilities.

• The primary location for this role will be Creve Coeur, MO.

WHO YOU ARE:

Bayer seeks an incumbent who possesses the following:

Required Qualifications:

• Minimum of a Bachelor's degree in information technology, cybersecurity, computer science, or a related field (or equivalent combination of education and experience);

• 7+ years of experience in cyber security, with previous experience in a GRC role highly desired;

• Proficiency in various cybersecurity tools and software, understanding of network infrastructure and security protocols, and knowledge of threat modeling and risk assessment techniques;

• Extensive experience in managing information security in a corporate or government setting, along with familiarity with information security standards and frameworks such as ISO/IEC 27001 and NIST;

• Proven experience with risk management frameworks such as NIST Cybersecurity Framework or ISO 27001;

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) are desirable;

• Strong leadership skills.

Preferred Qualifications:

• Experience in managing information security in a corporate or government setting;

• Familiarity with information security standards and frameworks such as ISO/IEC 27001 and NIST;

• Proven experience with risk management frameworks such as NIST Cybersecurity Framework or ISO 27001;

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC).

This posting will be available for application until at least 1/2/2026.

Employees can expect to be paid a salary between $155,715.20 - $233,572.80. Additional compensation may include a bonus or commission (if relevant).

Other benefits include health care, vision, dental, retirement, PTO, sick leave, etc. If selected for this role, the offer may vary based on market data/ranges, an applicant's skills and prior relevant experience, certain degrees and certifications, and other relevant factors.

YOUR APPLICATION

Bayer offers a wide variety of competitive compensation and benefits programs. If you meet the requirements of this unique opportunity, and want to impact our mission Science for a better life, we encourage you to apply now. Be part of something bigger. Be you. Be Bayer.

To all recruitment agencies: Bayer does not accept unsolicited third party resumes.

Bayer is an Equal Opportunity Employer/Disabled/Veterans

Bayer is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below.

Bayer is an E-Verify Employer.

Location: United States : Missouri : Creve Coeur

Division: Enabling Functions

Reference Code: 859322

Contact Us

Email: hrop_usa@bayer.com

Job Tags

Similar Jobs