Cyber Security, Cyber Risk Manager

Full Time
Plano, TX
report a problem

Job ID 1006363
Date posted 6/23/2017
Primary Location Plano, Texas, United States; Roseville, California, United States
Other location Roseville,California,United States of America
Job Category Information Technology, Graduate programs and Internships
Schedule Full time
 No shift premium (United States of America)

The Cyber Security Risk Manager partners with IT groups, business groups, and project teams to perform security risk analysis for applications, infrastructure, and vendor / third parties.  The Security Risk Manager will also support the selection of technical security requirements, and will be oversee the review, approval and tracking of security exceptions and remediation.

  • Participate in security risk analysis on new or existing technology and services as necessary and in alignment with HPE’s cyber risk management program delivering comprehensive, contextualized, actionable information
  • Facilitate remediation planning, governance, and risk treatment activities as required, such as by recommending appropriate risk controls
  • Manage multiple risk assessments and other risk oriented consulting projects in fast-paced environments
  • Develop and improve risk taxonomy, checklists, templates, testing methods, and techniques to support and advance a robust risk management program
  • Provide periodic updates on risk assessment status with an emphasis on deliverables
  • Build relationships throughout HPE’s technology and business organizations to be leveraged in support of risk awareness and improved risk management outcomes
  • Provide input to corporate initiatives to establish security criteria or specifications for Information Security as required
  • Understand business needs and deliver high-quality, prompt, and efficient service
  • 5+ years of IT experience in large, multi-national organizations
  • 3+ years of IT security experience focusing on security risk assessments, review of technical security requirements
  • Strong critical thinking skills; ability to quickly comprehend problems, develop hypotheses, draw logical conclusions, develop solutions, and respond accordingly
  • Demonstrated ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
  • Mature understanding of information security “best practices” including principles, security protocols and standards material such as OWASP Top 10 and SANS Critical Security Controls
  • Familiarity with business, finance, and management concepts
  • Articulate communicator, demonstrating mastery of both spoken and written English, with the ability to tailor deliverable appropriately for audiences ranging from technical to senior executive
  • Proven history of being a self-starter: proactively identifying problems, determining pragmatic solutions, identifying and obtaining needed resources, and executing with little or no supervision
  • Relevant undergraduate degree or equivalent professional experience
  • Advanced Information Security certification (CRISC, CISSP or equivalent is preferred)

Share this job:

Hewlett-Packard Enterprises

Welcome to the new Hewlett Packard Enterprise where we help customers use technology to turn ideas into value. In turn, they transform industries, markets and lives. We’re in the acceleration business and we’re here to help you go further, faster.

Visit Hewlett-Packard Enterprises's Social Media pages:
Company Industry: Information Technology and Services
Company Size: 10,001+