$100K — $150K *
At EMC, you'll put your skills to good use as an important member of our team. You can count on gaining valuable experience while contributing to the company's success. EMC strives to hire and retain the best people by engaging, developing and rewarding employees.
Leads identification, analysis and monitoring of information security and business continuity risks that EMC is exposed to.
Performs risk assessments of corporate operating plan initiatives and maintains risk registers for enterprise level information security and business continuity risks.
Develops key risk indicators and continuously monitors identified risks.
Works with IT to ensure alignment with information security risk management functions including risk tolerance management
Partners with Corporate Compliance and Legal to identify laws and regulations that EMC is subject to that include security requirements and documents compliance requirements.
Creates and leads the process of the annual enterprise information security risk assessment required by regulations.
Determines current risk levels through risk likelihood and impact analysis and makes risk treatment recommendations.
Serves as the subject matter expert on the Integrated Risk Management software solution.
Sets up system users, configures risk assessment and risk reporting workflows, creates system reports, and provides technical assistance to system users
Education & Experience:
Bachelor’s degree in information security, a technology related field, risk management, or related field, or equivalent relevant experience
Seven years of experience in information security, risk management or related experience
CISSP, CRISC, CISA or other information security designations preferred
Knowledge, Skills & Abilities:
Ability to identify, analyze, monitor and report risk information
Knowledge of risk management frameworks such as Committee of Sponsoring Organizations of the Treadway Commission (COSO) and National Institute of Standards and Technology Risk Management Framework (NIST RMF)
Strong understanding of risk management, information security and business continuity principles
Ability to assess inherent risk, controls, residual risk and risk tolerance
Strong knowledge of information security risk analysis practices, regulations, and laws
Knowledge of property and casualty insurance industry preferred
Excellent verbal and written communication skills
Strong analytical and problem-solving abilities to help identify problems and implement effective solutions
Strong organizational and decision-making skills
Strong teamwork and conflict management abilities
Our employment practices are in accord with the laws which prohibit discrimination due to race, color, creed, sex, sexual orientation, gender identity, genetic information, religion, age, national origin or ancestry, physical or mental disability, medical condition, veteran status, citizenship status, marital status or any other consideration made unlawful by federal, state, or local laws.
Valid through: 11/5/2020