IT Security Risk Assessment Delivery Lead

Job ID:
Charlotte, NC
Information Technology, Telecommunications, Array
$125,000.00 per year
Zip Code:
Employment Type:
Full time

Job Description:

IT Security Risk Assessment Delivery Lead
$100-125K +bonus

*Can be located in Tempe, AZ or Charlotte, NC*

The Information Security Risk Assessment Delivery Lead directs and leads a team of assessors to proactively identify, assess, and communicate the company's information security risks as a key component of the enterprise risk management program.

  • Independently oversee the delivery of high-quality assessments across a diverse set of technologies, business functions, and complexity. This includes but is not limited to assessments for internal and SAAS applications, network devices, control processes, business functions, and facilitating the ongoing analysis of enterprise-wide risks across Company and its family of companies.
  • Research and identify emerging trends in data threats and data protection; and implement programs that ensure or improve the effectiveness of risk management and protection strategies.
  • Collaborates in close partnership with internal auditors, privacy, legal, and information security and business representatives to scope, plan, and schedule assessment engagements to meet enterprise goals.
  • Maintain accountability for ensuring the quality and timeliness of all risk assessment and consulting deliverables and act as an initial escalation point to overcome barriers to success and roadblocks impeding the work.
  • Build professional relationships across the company and work closely with and influence senior decision makers in other departments to identify, recommend, develop, implement, and support a risk informed decision and action framework.
  • Act as a change catalyst for a risk based approach to delivery of services and systems. Partner with cross functional teams to set and manage expectations; continually seeks opportunities to be a thought partner and increase internal business partner satisfaction and deepen relationships.
  • Develop and improve metrics, KPIs, and trending for the risk management activities and drive visibility and transparency of business value for completed work.

Job Qualifications

  • College Degree or equivalent work experience;
  • 7+ years work experience in information security risk management.
  • Direct experience conducting information security risk assessments.
  • Strong understanding of IT security best practices
  • Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing.
  • Demonstrated ability to participate in and lead cross functional teams, including offsite, remote and offshore resources.
  • Ability to effectively communicate with technical and nontechnical resources
  • Effective written and verbal communication skills. Ability to tailor communication style to audience at hand
  • Strong organizational skills
  • Self-directed, works with minimal guidance, and recognizes when guidance needed
  • Knowledge of PCI DSS, HIPAA, ISO, NIST, and IT Controls.
  • Direct experience working with quantitative risk analytics a strong plus (FAIR, AIE)
  • Direct experience assessing risk in Agile software development environments preferred
  • Direct experience with ArcherGRC, RiskLens, SkyHigh ShadowIT, and Blue Prism (RPA) tools a plus.
Company Info
Request Technology - Anthony Honquest