Sr Risk Assessor
Spectrum’s Information Security strategy aligns talented employees, innovative IT processes, and leading technology to safeguard information systems and protect critical business data. Our teams use proven methodology, emerging technologies, and industry best practices to quickly identify and remediate security vulnerabilities. We offer exciting opportunities in cybersecurity while collaborating across Spectrum’s network to create a diverse and dynamic work environment.
BE PART OF THE CONNECTION
As a Senior Risk Assessor on the Cybersecurity team, you’ll be responsible leveraging your technical expertise to assist leadership teams in effectively addressing enterprise security risks by performing risk assessments through questionnaires, interviews, and key control testing. You will be immersed in enhancing Spectrums internal audit functions to further align organizational strategy and risk, as well as identifying opportunities to effectively mitigate risk and improve business performances. You will also apply the concepts of Enterprise Risk Management to help organization identify, assess, and mitigate emerging risks. Additionally, as a Senior Risk Assessor you will mentor team members, make recommendations to audits, and serve as escalation point in absence of leadership for team members and external department inquiries.
WHAT OUR SENIOR RISK ASSESSORS ENJOY MOST
- Leading technical risk assessments for Spectrum to identify threats, risks, and controls.
- Developing the security controls and processes for their department.
- Guiding risk assessment process and procedures, requirements, and controls.
- Collaborating with other teams to reveal discovered findings.
WHAT YOU’LL BRING TO SPECTRUM
Required Qualifications
- Experience:
- IT/IT Security and/or Corporate Risk/Audit Work experience- 6+ years
- IT Risk Management and/or IT Internal Audit including experience in Information Security & Technical Privacy- 4+ years
- Education:
- Bachelor’s degree in BA or BS Management Information Systems, Computer Science, Accounting, and / or business related discipline, or equivalent work experience.
- One of the following or equivalent certifications required or actively pursuing:
- Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA) certifications
- Complimentary- Certified Ethical Hacker (CEH)
- Technical skills:
- Knowledge of control testing the following audit/assessment frameworks: Payment Card Industry (PCI), Sarbanes Oxley (SoX), Health Insurance Portability and Accountability Act (HIPAA), National Institute of Standards and Technology (NIST 800-53), Customer Proprietary Network Information (CPNI).
- Knowledge of technical aspects to complete projects in the following areas: IT Audits, IT Risk Management, Information Security and/or Technical Privacy.
- Experience in audit and/or Information Security practices and frameworks for large organization.
- Knowledge of Information Security strategy, organization, policy and Governance
- Basic knowledge in utilization of network and application security assessment tools and methodologies to manage and address security and control issues with the following technologies: UNIX, Windows Servers, databases (Oracle, SQL, DB2, etc.), mainframe, firewalls, routers, wireless environments, mobile devices, and cloud computing.
- Skills:
- Excellent verbal and written communications skills.
- Foster and maintain relationships with key stakeholders, departmental leadership, and business partners.
- Abilities:
- Ability to read, write, speak and understand English.
- Ability to translate technical terms to non-technical (business) colleagues and non-technical (business) terms to technical colleagues.
- Ability to be adaptable and flexible while working in a dynamic environment.
- Travel Ability:
- Some Travel Required
- Office Environmen
- Schedule:
- Full time
- This position is eligible to work in a hybrid work model (combination of in-office and remote days
SPECTRUM CONNECTS YOU TO MORE
- Innovative Tools & Tech: Work with high-performing software and applications on the forefront of the digital telecommunications industry.
- Dynamic Growth: The growth of our industry and evolving technology will power your career as you move up or around the company.
- Supportive Teams: Who you are matters here. And, we aim to foster an inclusive workplace where every person is empowered to bring their best ideas.
- Total Rewards:See all the ways we invest in you—at work and in life
Apply now, connect a friend to this opportunity or sign up for job alerts!
Job Code : ISE320
2024-30008
Here, employees don’t just have jobs, they build careers. That’s why we believe in offering a comprehensive pay and benefits package that rewards employees for their contributions to our success, supports all aspects of their well-being, and delivers real value at every stage of life.
A qualified applicant’s criminal history, if any, will be considered in a manner consistent with applicable laws, including local ordinances.
Who You Are Matters Here
We're committed to growing a workforce that reflects our communities, and providing equal opportunities for employment and advancement. Learn about our inclusive culture.