Provide critical support and hands-on expertise in managing Information Security and Privacy risks and controls across various technology initiatives.
Identify and assess risks, driving remediation efforts for audit and exam findings.
Manage security-related issues and conduct rigorous control testing and validation.
Partner closely with engineering, product, and other business units to ensure robust security controls are implemented and maintained.
Promote risk-awareness and the overall effectiveness of risk and compliance management programs.
Manage risk assessment data and use critical thinking to identify key data-driven insights tied to the first line of defense.
Direct and oversee multiple initiatives in support of risk and/or regulatory compliance related initiatives.

Requirements

Bachelor’s degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.
8 years of experience supporting risk-related, compliance related, or business control design activities; OR 8 years of experience in a relevant quantitative discipline; OR Advanced degree or designation in a risk management or quantitative discipline, and 6 years of experience supporting risk-related, and/or compliance-related, or business control design activities; OR PhD in a risk management or quantitative discipline, and 4 years of experience supporting risk-related, and/or compliance-related, or business control design activities.
Deep technical understanding of Cybersecurity principles, common vulnerabilities, and security control mechanisms across various domains (e.g., network security, endpoint security, cloud security, application security).
Certifications such as CISSP, CISM, CRISC, CIPP, or GIAC certifications are highly desirable.
Familiarity with security frameworks (e.g., NIST Cybersecurity Framework, ISO 27001) and their application in control design and assessment.
Demonstrated ability to manage complex issues and drive them to resolution in dynamic and uncertain environments.
Excellent communication and interpersonal skills, with the ability to influence and collaborate effectively with technical and non-technical stakeholders.

Benefits

comprehensive medical, dental and vision plans
401(k)
pension
life insurance
parental benefits
adoption assistance
paid time off program with paid holidays plus 16 paid volunteer hours
various wellness programs
career path planning and continuing education

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Information SecurityPrivacy risk managementRisk assessmentControl testingCybersecurity principlesNetwork securityEndpoint securityCloud securityApplication securityData-driven insights

Soft Skills

Critical thinkingRisk-awarenessCollaborationInfluencingCommunicationInterpersonal skillsProblem-solvingAdaptabilityLeadershipComplex issue management

Certifications

CISSPCISMCRISCCIPPGIAC