Compartir esta oferta de empleo
Enviar candidatura ahora »

Expert Cyber Security - IT North America

Expert Cyber Security - IT North America

.

Resumen de posición

Under the supervision and guidance of their primary Community of Practice Lead and Product Group Manager based in Switzerland, the Cyber and Digital Security Expert is responsible for establishing and maintaining security products, platforms and solutions designed to mitigate IT risks across the Group to ensure that information assets are adequately protected. They are responsible for the identification, evaluation and reporting of information security risks in a manner that meets compliance and regulatory requirements, aligning with and supporting the risk posture of the enterprise. The Cyber and Digital Security Expert requires to be a visionary leader with strong skills in business management and a working knowledge of information security technologies. They will proactively work with IT and business units to implement practices that meet defined policies and standards for information security. Acting as a security business partner for the IT Product Groups, they represent Security in various core team meetings. The Cyber and Digital Security Expert continuously researches and stays on top of emerging security threats, technologies and trends.

Un día en la vida de...

  • T Product Managers, BRMs and IT Customers to facilitate business IT risk assessment and risk management processes, and works with stakeholders through the enterprise on identifying acceptable levels of residual risk
  • Provides periodic reporting on the current status of the information security program to enterprise risk teams, senior business and IT leaders – in collaboration with the Office of the CIO - as part of a strategic enterprise risk management program
  • Facilitates a metrics and reporting framework in collaboration with the Office of the CIO to measure the efficiency and effectiveness of the program, promoting appropriate resource allocation, and increase the maturity of the security
  • Defines and facilitates the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings
  • Creates a framework for roles and responsibilities with regard to information ownership, classification, accountability and protection
  • Provides strategic risk guidance for IT projects and product management, including the evaluation and recommendation of technical control
  •  

Lo que te hará exitoso

  • Degree in business administration or a technology-related field, or equivalent work- or education-related experience
  • 8+ years of experience in a combination of risk management, information security and IT jobs — at least four must be in a senior leadership role
  • Professional security, cloud and software architecture certifications, such as a CISSP, CISSP-ISSAP, CSSLP, GIAC, AWS Solution Architect, Azure Solutions Architect or other similar credentials, is preferred. 
  • Knowledge of common information security management frameworks, such as ISO 27001 and NIST. 
  • Excellent written and verbal communication skills in English, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences (e.g. management, agencies, vendors)

.

 

.

Resumen de posición

Under the supervision and guidance of their primary Community of Practice Lead and Product Group Manager based in Switzerland, the Cyber and Digital Security Expert is responsible for establishing and maintaining security products, platforms and solutions designed to mitigate IT risks across the Group to ensure that information assets are adequately protected. They are responsible for the identification, evaluation and reporting of information security risks in a manner that meets compliance and regulatory requirements, aligning with and supporting the risk posture of the enterprise. The Cyber and Digital Security Expert requires to be a visionary leader with strong skills in business management and a working knowledge of information security technologies. They will proactively work with IT and business units to implement practices that meet defined policies and standards for information security. Acting as a security business partner for the IT Product Groups, they represent Security in various core team meetings. The Cyber and Digital Security Expert continuously researches and stays on top of emerging security threats, technologies and trends.

Un día en la vida de...

  • T Product Managers, BRMs and IT Customers to facilitate business IT risk assessment and risk management processes, and works with stakeholders through the enterprise on identifying acceptable levels of residual risk
  • Provides periodic reporting on the current status of the information security program to enterprise risk teams, senior business and IT leaders – in collaboration with the Office of the CIO - as part of a strategic enterprise risk management program
  • Facilitates a metrics and reporting framework in collaboration with the Office of the CIO to measure the efficiency and effectiveness of the program, promoting appropriate resource allocation, and increase the maturity of the security
  • Defines and facilitates the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings
  • Creates a framework for roles and responsibilities with regard to information ownership, classification, accountability and protection
  • Provides strategic risk guidance for IT projects and product management, including the evaluation and recommendation of technical control
  •  

Lo que te hará exitoso

  • Degree in business administration or a technology-related field, or equivalent work- or education-related experience
  • 8+ years of experience in a combination of risk management, information security and IT jobs — at least four must be in a senior leadership role
  • Professional security, cloud and software architecture certifications, such as a CISSP, CISSP-ISSAP, CSSLP, GIAC, AWS Solution Architect, Azure Solutions Architect or other similar credentials, is preferred. 
  • Knowledge of common information security management frameworks, such as ISO 27001 and NIST. 
  • Excellent written and verbal communication skills in English, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences (e.g. management, agencies, vendors)

.

 

Ciudad de Mexico, MX, 11520

Ciudad de Mexico, MX, 11520

Enviar candidatura ahora »