Cyber Enterprise Risk Management Senior Specialist
|Reference # :||18-00164||Title :||Cyber Enterprise Risk Management Senior Specialist|
|Location :||Abbott Park, IL|
|Position Type :||Contract|
|Experience Level :||Start Date / End Date :||03/12/2018 / 09/11/2018|
|Cyber Enterprise Risk Management Senior Specialist|
This role is within Information Security and Risk Management (ISRM), responsible for information security risk analysis and enterprise risk management processes and to identity acceptable levels of risk for the environment. This person will work directly with their management, and other internal departments and organizations to conduct internal enterprise impact analysis to ensure the business and resources are adequately protected with proper security measures. This person will support coordination across lines-of-business (i.e., IT and business divisions) to ensure security is incorporated into initiatives. This position will require experience with cyber risk management technologies (e.g., GRC solutions) that enable a seamless and efficient process to manage strategy, risk and governance across the enterprise. This role is responsible for managing assigned project deliverables, and assisting with project execution as required.
Core Job Responsibilities
? Assess potential items of risk and opportunities of vulnerability across the enterprise, in the network and on information technology infrastructure and applications.
? Review risk assessments, analyzes the effectiveness of information security control activities, and reports on them with actionable recommendations.
? Assist manager with the evaluation, identification and remediation of cyber risks associated with potential and pending mergers, acquisitions, and divestitures.
? Participate in security planning and analyst activities.
? Work independently to conceive and develop solutions to problems and approaches to meet objectives.
? Collaborate with BTS teams to ensure security is incorporated in projects.
Up to Two direct reports
Position Accountability / Scope
Reports to the Cyber Risk Management Senior Manager. The scope of this position is Client wide and considers the information security implications unique to all Client divisions when developing governance and risk management strategies. No direct budget responsibility.
? Bachelor's degree in Information Security, Computer Science, or related field
Minimum Experience/Training Required
? 5-7 years of experience is required.
? Possess CISSP certification (or similar) preferred and be knowledge of national and international regulatory compliances and frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS is desired.
? Experience with GRC toolsets (Governance Risk and Compliance)
Job Status: Contract/Temporary