IS Global Security Technical Risk Manager ABB Robotics

This Position reports to:

Take your next career step at ABB and join a global team that is driving the transformation of industry and society toward a more productive and sustainable future. We are looking for an experienced IS Global Security Technical Risk Manager to strengthen our Robotics division. In this role, you will lead efforts to identify, assess, and mitigate technical risks across our global infrastructure, cloud platforms, applications, and digital services. You will act as a strategic link between cybersecurity, IT operations, and enterprise risk management, ensuring that technical decisions align with ABBs risk appetite and compliance obligations.

The position is global and the preferred locations are Poland, India, Spain, Italy, Sweden and China.

Your responsibilities:

• Conduct technical risk assessments across infrastructure, cloud, applications, and third-party services, identifying vulnerabilities and exposure points.

• Recommend, validate, and oversee implementation of technical controls to mitigate risks, supporting secure configuration baselines and system hardening.
• Lead application security reviews and penetration testing, contributing to enterprise risk management, audit readiness, and continuous improvement initiatives.
• Translate technical risks into business impact for senior stakeholders, providing actionable insights during project planning, change management, and vendor onboarding.
• Collaborate across cybersecurity, IT, compliance, and business units to align with frameworks such as ISO 27005, NIST RMF, and FAIR, and actively support incident response and post-incident reviews across all Robotics regions and functions.

Your background

• 5 to 10 years of experience in cybersecurity, IT risk, or technical audit roles.
• Strong knowledge of enterprise architecture and cloud platforms, especially Microsoft Azure.
• Familiarity with security frameworks such as NIST, ISO 27005, and OWASP.
• Hands-on experience with risk assessment methodologies including FAIR and CVSS.
• Relevant certifications such as CRISC, CISSP, CISM, ISO 27005 Risk Manager, or FAIR Analyst.
• Ability to translate complex technical risks into clear business language for executive reporting.