Senior Cyber Security Technology Business Risk Advisor / Analyst

Global Technical Talent
Published
May 5, 2021
Location
San Francisco, CA
Category
Job Type

Description

Senior Cyber Security Technology Business Risk Advisor / Analyst 

 

LOCAL CANDIDATES ONLY - around the bay and in between Sacramento
 
Top Things:
  • Strong understanding of tech security controls and control frameworks (i.e. NIST 800-53)
  • Cloud Risk Assessment familiarity
  • Significant contributor to security vision, strategy, planning and leadership for the design, development, implementation and support of technology risk management framework for a line of business to achieve its objectives.
  • Contributes to successful implementation of security into new/enhanced systems to meet scope, schedule, and budget.
  • Recommends risk-based prioritization for security within technology roadmaps.
  • Scope the assessment of risks and the execution of plans to mitigate the risks.
  • Proactively provides expert knowledge of industry trends and technologies as it relates to specific opportunities where security can enhance value to the business and/or addresses a specific business need.
  • Contributes to technology risk-based investment planning through risk-integration with BTLs.
  • Identifies risk opportunities to make IT and business processes more effective and efficient.
  • May direct the implementation of improvement (mitigation) initiatives.
  • Drive compliance to standards/regulations and governance processes as it relates to the line of business.
 
Core Responsibilities:
  • Overall operations arm of the risk management function.
  • Develops and operates enterprise technology risk dashboard.
  • Analyzes supply & demand and for all risk assessment activities to develop schedule with A&V team.
  • Accountable for development of security business (quality) requirements.
  • Acts as a liaison to operations and CTO to drive improvement based on patterns.
  • Drafts risk exception reporting, where applicable.
  • Works with Risk Advisory team to develop mitigation plans.
  • Establishes and maintains security metrics.
  • Manages and accountable for the development of the risk scenario library.
 
Key Outputs:
  • Supply and demand forecast.
  • Security requirements
  • Overall risk assessment master schedule.
  • Reporting standards and templates.
  • Risk mitigation plans and Security metrics. REQUIRED:
  • Excellent planning, organizational and project management skills; detail and process-oriented; able to juggle multiple priorities in a fast-paced environment
  • Understanding of information security concepts and strategy
  • Understands information security holistically and how it relates to business goals
  • Understanding of risk assessment and risk analysis frameworks
  • Outstanding problem-solving/decision making ability
  • Excellent written and verbal communication skills, able to explain complex issues in clear and concise terms
  • First class documentation skills
  • Exceptional interpersonal skills, including teamwork, facilitation and negotiation
  • Highly collaborative, able to work cross-functionally; possessing the ability to forge relationships and partner effectively
 
Desired:
  • Demonstrated strategic planning and road mapping ability
  • Strong leadership skills; able to manage, mentor and motivate
  • Resourceful and self-motivated, able to work independently when required
  • Credible and persuasive; able to present often complex information in an accessible fashion to a non-technical audience
  • Experience with enterprise security in a complex, multi-platform environment including SCADA and other complex technology platforms
  • Experience with regulatory requirements (Nerc-CIP, SOX, FCC, SB 1386/1746, etc.)
  • B.A./B.S. degree or equivalent work experience in computer science, business administration or other relevant field required.
 
Required:
  • Minimum of 4 years of relevant technical experience
  • Utility Experience
 
Desired:
  • Experience within the related line of business.
  • Minimum of 2 years of leading a team in an IT function
  • CISSP certification, or ability to obtain via self-study within one year of date of hire, other relevant IT or security certifications.
Apply
Drop files here browse files ...

Related Jobs

Sales Consultant   Colma, CA new
May 10, 2021
Sales Consultant - Part Time   Colma, CA new
May 10, 2021
Sales Leader   Berkeley, CA new
May 10, 2021
May 10, 2021

Author: