Risk Expert Cybersec-WMTech
- Location BENTONVILLE, AR
- Department Technology & Software Development
- Team Information Technology
- Employment Type Full Time
- Position Salary
- Requisition 870761BR
What you'll do
Coordinates compliance efforts in one area of regulatory specialty by monitoring the implementation of specific information security controls; ensure proficiency with regulatory concepts (for example, ISO, SOX, PCI, HIPAA); maintain an understanding of multiple areas of compliance; manage multiple compliance assessments and remediation processes; identify security compliance assessment and remediation process improvement; define and/or implement solutions to assess compliance and reduce risk; and present results and analysis of assessment and remediation activity to senior management.
Manage the execution of basic security initiatives by prioritizing critical issues for root-cause analysis; ensure resolution of critical issues; monitor progress versus plan; escalate complex or difficult issues; utilize scope-change orders to track changes to the project; minimize impact of changes; track expenditures and budgets; provide informational presentations; manage stakeholder expectations; hold self and project team accountable for project delivery; develop performance reports; and collaborate with stakeholders to assess costs and establish the return on investment (ROI).
Manage the implementation of security governance by leading the process of governance administration and maintenance; ensure familiarity with Walmart Information Security policies, standards, procedures, and best practices; model various governance concepts (or example, ITIL, COBIT, Six Sigma, CMM); develop recommended remediation for gaps in security governance and policies through collaboration and consensus building; compare and contrast Walmart practices and industry standards; review governance broadly for overlap and inconsistencies of operational, security, and management practices; and maintain familiarity with legislative process and pending legislation.
Analyze and identify risk by understanding basic factors of influence to impact and likelihood; build working knowledge and relationship between risk and governance; build expertise in risk analysis in multiple layers of security; and develop risk mitigation strategies for identified vulnerabilities; represent risk in multiple areas or domains; define risks based on criticality, frequency, or level of impacts; and report to senior management risk observations.
Build vendor relations by preparing and executing request for proposals (RFPs); facilitate the vendor selection process; review statements of work; ensure compliance to vendor contracts; and report on vendor contract execution.
Drive the execution of multiple business plans and projects by identifying customer and operational needs; develop and communicate business plans and priorities; remove barriers and obstacles that impact performance; provide resources; identify performance standards; measure progress and adjust performance accordingly; develop contingency plans; and demonstrate adaptability and support continuous learning.
Provide supervision and development opportunities for associates by training, mentoring, and assigning duties; build a team-based work environment; establish performance expectations and conduct regular performance evaluations; provide recognition and rewards; coach for success and improvement; and ensure diversity awareness.
Promote and support company policies, procedures, mission, values, and standards of ethics and integrity by training and providing direction to others in their use and application; ensure compliance with them; utilize and support the Open Door Policy.
Ensure business needs are being met by evaluating the ongoing effectiveness of current plans,
- Bachelor s degree in Computer Science, Information Technology, Engineering, Computer Information Systems, or risk related field and 6 years' experience in information technology or risk related field within the last 10 years OR 8 years' experience in information technology or risk related field within the last 10 years.
Establishing best in class Vulnerability Management Program
Ability to Transform tracking and tagging of system vulnerabilities
Work across multiple functional areas in building automation for tracking security vulnerabilities and ownership
2 years of' experience in investigations, audits, or assessments, evidence handling, and document collection and retention consistent with judicial best practices.
2 years of experience working in a global environment.
2 years of expertise with current and emerging technologies (for example, mobile, cloud, federation, network, cryptography, firewalls, security technologies, intrusion detection and/or prevention devices, penetration testing, architecture).
2 years of expertise with payment card industry data security (PCI), International Organization for Standardization (ISO), Health Insurance Portability and Accountability Act (HIPPA), and/or Sarbanes-Oxley Act (SOX) compliance and/or reporting process.
2 years of expertise with risk frameworks (for example, COBIT, ISO 27005).
4 years of experience creating and presenting technical strategies and technical solution recommendations.
4 years of experience designing and implementing technical solutions for information security.
4 years of experience integrating new technologies into existing technology portfolio.
4 years of leading cross-functional teams providing support through the project lifecycle.
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and/or related certifications.
"I feel like my manager wants to help me become a better developer and a better person overall."
Hello, NW Arkansas
With over 200 miles of trails, an emerging locally-sourced food scene, the world-renowned Crystal Bridges Museum—NWA has something for everyone.Discover NW Arkansas
Crystal Bridges Museum
Celebrate the American spirit in a setting that unites the beauty of art and the power of nature.
Walton Arts Center
Arkansas' premiere center for visual arts and entertainment.
An interactive children's museum that's fun for the whole family.
42 acres of premiere public garden space.
Devil's Den State Park
Located on 2,500 acres, Devil's Den State Park is the perfect place to explore Arkansas' natural beauty.
- come together
The best of shopping and restaurants, right in the heart of Fayetteville.
All the benefits you need for you and your family
- Multiple health plan options
- Vision & dental plans for you & dependents
- Associate discounts in-store and online
- Financial benefits including 401(k), stock purchase plans and more
- Education assistance for Associate and dependents