girl looking into her desktop
Back to search results

Compliance and Operational Risk Manager; Cyber Security Defense

Charlotte;

Job Description:

The Cybersecurity Compliance and Operational Risk team (CyberCOR) serves as second line Risk Officers responsible for overseeing information security risk across the company. CyberCOR leaders are aligned by Global Information Security (GIS) control family to deliver a comprehensive risk-based approach for the proactive identification, management, mitigation and escalation of compliance and operational risks throughout the Company. Because Information Security is an Enterprise Area of Coverage, Cyber COR oversees information security risk managed by GIS and by the FLUs which comply with GIS requirements. This specialist will be aligned to the CyberCOR Cyber Security Defense Operations team. This team focuses on oversight of the Response & Recovery, Cyber Threat Intelligence, Cyber Threat Defensive Operations, and Cloud Defense GIS programs.

Responsibilities include:

Independently monitoring, testing and assessing first line controls and control performance using second line tools to ensure information security risks are effectively managed

Reporting control performance formally through Risk Committees and to company leadership and external regulators through monthly/quarterly/annual GRM reporting

Opening Risk Identified Audit Issues (RIAIs) on the first line to resolve risks identified

Review and challenge of high severity first-line issue resolution ensure completeness and sustainability of audit issues

Advising the first line on their risk management to align with regulatory and Audit expectations  

Required Skills: 

•       Minimum Years Business & Functional Experience: 5 Years Functional Experience

•       Experience in information security response/triage, cyber intelligence, or cloud security 

•       Experience transforming data into information and creating insight out of information.

•       Ability to distill complex, technical issues into easy to communicate language

•       At least five years experience in technology infrastructure, cybersecurity or devops role

•       Strong written and verbal communication skills

•       Strong organizational skills

Job Band:

H4

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

The Cybersecurity Compliance and Operational Risk team (CyberCOR) serves as second line Risk Officers responsible for overseeing information security risk across the company. CyberCOR leaders are aligned by Global Information Security (GIS) control family to deliver a comprehensive risk-based approach for the proactive identification, management, mitigation and escalation of compliance and operational risks throughout the Company. Because Information Security is an Enterprise Area of Coverage, Cyber COR oversees information security risk managed by GIS and by the FLUs which comply with GIS requirements. This specialist will be aligned to the CyberCOR Cyber Security Defense Operations team. This team focuses on oversight of the Response & Recovery, Cyber Threat Intelligence, Cyber Threat Defensive Operations, and Cloud Defense GIS programs.

Responsibilities include:

Independently monitoring, testing and assessing first line controls and control performance using second line tools to ensure information security risks are effectively managed

Reporting control performance formally through Risk Committees and to company leadership and external regulators through monthly/quarterly/annual GRM reporting

Opening Risk Identified Audit Issues (RIAIs) on the first line to resolve risks identified

Review and challenge of high severity first-line issue resolution ensure completeness and sustainability of audit issues

Advising the first line on their risk management to align with regulatory and Audit expectations  

Required Skills: 

•       Minimum Years Business & Functional Experience: 5 Years Functional Experience

•       Experience in information security response/triage, cyber intelligence, or cloud security 

•       Experience transforming data into information and creating insight out of information.

•       Ability to distill complex, technical issues into easy to communicate language

•       At least five years experience in technology infrastructure, cybersecurity or devops role

•       Strong written and verbal communication skills

•       Strong organizational skills

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22021443

Band: H4

Manages People: No

Travel: No

Manager:

Talent Acquisition Contact:

Kayla Fimple

Referral Bonus:

0