Senior Manager, Technology and Cyber Risk Management
Posted on Sep 21, 2024 by ServiceNow
Addison, TX
Other
Immediate Start
Annual Salary
Full-Time
Job Description
Cybersecurity Risk Management: Maintain and oversee the technology and cybersecurity risk register, conducting regular risk assessments to identify, evaluate, and mitigate potential security threats.
Security Requirements Translation: Translate complex security requirements into actionable business requirements, effectively communicating associated risks to stakeholders at all levels, including business leaders and engineers.
Security Controls Implementation: Ensure the successful implementation and ongoing maintenance of security controls across classified information systems.
Technical Risk Oversight: Manage and oversee technical risk assessments, including vulnerability scanning, penetration testing, risk evaluations for new applications, and third-party risk assessments.
Security Design Advisory: Provide expert advice on security design, recommending security systems and controls that align with industry best practices.
Collaborative Solutions Delivery: Work closely with application owners and multi-disciplinary teams to deliver comprehensive solutions that address identified security risks and concerns.
Security Architecture Expertise: Serve as a subject matter expert in security architecture, tools, and systems engineering, supporting both IT and business teams.
Cloud Security Controls Implementation: Lead the implementation of security-related projects, particularly for cloud and hybrid cloud systems.
Security Automation: Drive the automation of security controls, data, and processes to enhance security metrics and operational support.
Security as Code Framework: Design and implement tools to establish a Security as a Code framework, automating security controls, data, and processes to strengthen our overall security posture.
Emerging Technologies Monitoring: Stay up-to-date on emerging security technologies, vulnerabilities, risks, and trends, and apply this knowledge to optimize security practices.
Technical Documentation: Create and maintain comprehensive technical documentation, including run-books, for all security project implementations. Implement cybersecurity controls and standards, such as NIST and SOC2, relevant to TechOps infrastructure.
Cross-Functional Collaboration: Act as a liaison with SSO & Internal audit teams for all security initiatives and audits.
Cybersecurity Risk Management: Maintain and oversee the technology and cybersecurity risk register, conducting regular risk assessments to identify, evaluate, and mitigate potential security threats.
Security Requirements Translation: Translate complex security requirements into actionable business requirements, effectively communicating associated risks to stakeholders at all levels, including business leaders and engineers.
Security Controls Implementation: Ensure the successful implementation and ongoing maintenance of security controls across classified information systems.
Technical Risk Oversight: Manage and oversee technical risk assessments, including vulnerability scanning, penetration testing, risk evaluations for new applications, and third-party risk assessments.
Security Design Advisory: Provide expert advice on security design, recommending security systems and controls that align with industry best practices.
Collaborative Solutions Delivery: Work closely with application owners and multi-disciplinary teams to deliver comprehensive solutions that address identified security risks and concerns.
Security Architecture Expertise: Serve as a subject matter expert in security architecture, tools, and systems engineering, supporting both IT and business teams.
Cloud Security Controls Implementation: Lead the implementation of security-related projects, particularly for cloud and hybrid cloud systems.
Security Automation: Drive the automation of security controls, data, and processes to enhance security metrics and operational support.
Security as Code Framework: Design and implement tools to establish a Security as a Code framework, automating security controls, data, and processes to strengthen our overall security posture.
Emerging Technologies Monitoring: Stay up-to-date on emerging security technologies, vulnerabilities, risks, and trends, and apply this knowledge to optimize security practices.
Technical Documentation: Create and maintain comprehensive technical documentation, including run-books, for all security project implementations. Implement cybersecurity controls and standards, such as NIST and SOC2, relevant to TechOps infrastructure.
Cross-Functional Collaboration: Act as a liaison with SSO & Internal audit teams for all security initiatives and audits.
Reference: 202109123
https://jobs.careeraddict.com/post/95491722
Senior Manager, Technology and Cyber Risk Management
Posted on Sep 21, 2024 by ServiceNow
Addison, TX
Other
Immediate Start
Annual Salary
Full-Time
Job Description
Cybersecurity Risk Management: Maintain and oversee the technology and cybersecurity risk register, conducting regular risk assessments to identify, evaluate, and mitigate potential security threats.
Security Requirements Translation: Translate complex security requirements into actionable business requirements, effectively communicating associated risks to stakeholders at all levels, including business leaders and engineers.
Security Controls Implementation: Ensure the successful implementation and ongoing maintenance of security controls across classified information systems.
Technical Risk Oversight: Manage and oversee technical risk assessments, including vulnerability scanning, penetration testing, risk evaluations for new applications, and third-party risk assessments.
Security Design Advisory: Provide expert advice on security design, recommending security systems and controls that align with industry best practices.
Collaborative Solutions Delivery: Work closely with application owners and multi-disciplinary teams to deliver comprehensive solutions that address identified security risks and concerns.
Security Architecture Expertise: Serve as a subject matter expert in security architecture, tools, and systems engineering, supporting both IT and business teams.
Cloud Security Controls Implementation: Lead the implementation of security-related projects, particularly for cloud and hybrid cloud systems.
Security Automation: Drive the automation of security controls, data, and processes to enhance security metrics and operational support.
Security as Code Framework: Design and implement tools to establish a Security as a Code framework, automating security controls, data, and processes to strengthen our overall security posture.
Emerging Technologies Monitoring: Stay up-to-date on emerging security technologies, vulnerabilities, risks, and trends, and apply this knowledge to optimize security practices.
Technical Documentation: Create and maintain comprehensive technical documentation, including run-books, for all security project implementations. Implement cybersecurity controls and standards, such as NIST and SOC2, relevant to TechOps infrastructure.
Cross-Functional Collaboration: Act as a liaison with SSO & Internal audit teams for all security initiatives and audits.
Cybersecurity Risk Management: Maintain and oversee the technology and cybersecurity risk register, conducting regular risk assessments to identify, evaluate, and mitigate potential security threats.
Security Requirements Translation: Translate complex security requirements into actionable business requirements, effectively communicating associated risks to stakeholders at all levels, including business leaders and engineers.
Security Controls Implementation: Ensure the successful implementation and ongoing maintenance of security controls across classified information systems.
Technical Risk Oversight: Manage and oversee technical risk assessments, including vulnerability scanning, penetration testing, risk evaluations for new applications, and third-party risk assessments.
Security Design Advisory: Provide expert advice on security design, recommending security systems and controls that align with industry best practices.
Collaborative Solutions Delivery: Work closely with application owners and multi-disciplinary teams to deliver comprehensive solutions that address identified security risks and concerns.
Security Architecture Expertise: Serve as a subject matter expert in security architecture, tools, and systems engineering, supporting both IT and business teams.
Cloud Security Controls Implementation: Lead the implementation of security-related projects, particularly for cloud and hybrid cloud systems.
Security Automation: Drive the automation of security controls, data, and processes to enhance security metrics and operational support.
Security as Code Framework: Design and implement tools to establish a Security as a Code framework, automating security controls, data, and processes to strengthen our overall security posture.
Emerging Technologies Monitoring: Stay up-to-date on emerging security technologies, vulnerabilities, risks, and trends, and apply this knowledge to optimize security practices.
Technical Documentation: Create and maintain comprehensive technical documentation, including run-books, for all security project implementations. Implement cybersecurity controls and standards, such as NIST and SOC2, relevant to TechOps infrastructure.
Cross-Functional Collaboration: Act as a liaison with SSO & Internal audit teams for all security initiatives and audits.
Reference: 202109123
Share this job:
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog