Assoc Dir-Sec Risk Mgt

🌍 Remote, USA 💹 Full-time 🕐 Posted Recently

Job Description

About the position

Lead the strategy planning cycle, including the evaluation of inputs, quarterly alignment, and prioritization of business objectives.
Monitor Verizon's business initiatives and significant external factors to identify key items for the strategic roadmap.
Collaborate with stakeholders to identify gaps and process improvements needed to enhance business protections and achieve risk appetite and maturity goals.
Develop a cohesive strategic plan, including strategic initiatives and a comprehensive scorecard to measure effectiveness.
Maintain a multi-year strategic roadmap of security initiatives, strategic outcomes, and end vision.
Manage the CISO's strategic governance, including board reporting and analytics.
Socialize and align on periodic updates to the cyber strategy with cybersecurity leadership.
Update the strategic roadmap with new initiatives and underlying projects.
Work closely with cybersecurity teams, function owners, and risk and control teams to report on the progress of cybersecurity strategic initiatives to senior leaders.
Maintain a strategic metrics framework, reporting platform, and publication of results.
Facilitate the execution of the cybersecurity roadmap and drive accountability.
Evaluate current-state cyber program maturity and define target-state maturity levels aligned with Verizon's risk appetite and business objectives.
Design and manage the continuous monitoring program to track cybersecurity maturity and identify areas for ongoing improvement.
Execute the annual cyber maturity assessment plan, aligned with industry frameworks and tailored to Verizon's risks, threats, and business objectives.
Maintain a deep understanding of cybersecurity frameworks (e.g., NIST CSF) and their application to Verizon's environment.
Develop and deliver executive-level reports on cybersecurity maturity, providing clear and concise insights into progress, challenges, and recommendations.
Evaluate and manage relationships with external vendors providing maturity assessment and audit tools and services, ensuring alignment with Verizon's security objectives and budget.
Drive automation and continuous improvement by understanding processes, evaluating and implementing automation tools, and measuring the effectiveness of automation initiatives.

Bachelor's degree or six or more years of work experience.
Six or more years of relevant work experience.
Experience developing and implementing Technical Education and Awareness programs and strategies.
Experience in one or more of the following fields: Cyber Security, Learning & Development, Communications, IT, Application Development or Network Engineering.

A degree in Cyber Security, Computer Science, Information Systems or related fields.
Strong understanding of Verizon cybersecurity services and capabilities.
Advanced knowledge of cybersecurity frameworks (i.e. National Institute of Standards and Technology (NIST) special publications and frameworks).
Solid understanding of fundamental cybersecurity concepts, threats, vulnerabilities, and mitigation strategies.
Ability to consistently exercise sound judgment, perform thorough analysis, and recommend decisions in an organized manner.
Strong project management experience and the ability to prioritize and balance multiple projects simultaneously.
Experience leading a small team, setting performance goals, conducting performance reviews, and addressing performance issues.
Excellent communication, interpersonal, and collaboration skills, with the ability to effectively interact with technical and business senior staff.
Excellent analytical skills with the ability to analyze data, identify trends, and make data-driven decisions.
Advanced experience using SmartSheets, Excel, Sheets.
Proven ability to build strong relationships with stakeholders across the organization and manage relationships with external vendors.
Security certifications such as CISSP, CISM, CRISC, CompTIA Security+.
Demonstrated vendor management experience.