Employer: Home Depot
Location: Atlanta, GA
Position Purpose:
The Risk Management team plays an integral part in the development, implementation, and compliance of information security across the enterprise. This role within the Risk Management team is responsible for evaluating business practices and controls to determine the level of risk related to information security, physical security, privacy, and compliance.
Major Tasks , Responsibilities and Key Accountabilities
The Lead Security Risk Analyst is responsible for evaluating business practices and controls to determine the level of risk related to information security, physical security, privacy, and compliance. This position will report to the Manager of Information Security and will be responsible for the following activities:
Lead development and evaluations of the risk program that assures the team and solutions lead industry standards
Maintain the IT Security risk assessment framework and matrix for control assessments
Evaluate and determine a risk level for all applicable assets and vendors; determining the assessment frequency and control expectations
Conduct control and risk assessments against identified assets and vendors
Report and advise the Risk Management Council of assessment results and changes to the risk posture
Coordinate with IT and business teams to align control criteria effectively with procurement, compliance, and legal expectations
Advise leadership of industry and security changes on risk management that could be leveraged to improve program implementation
Preferred Qualifications:
Professional experience in analyzing and applying information security and risk management practices
Experience in strategic planning
Security consulting and general industry experience
Experience in executing against a risk management framework evaluating solutions based on standardization
Working experience of national and international regulatory compliance...
Environment: 1. Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Travel: 2. Typically requires overnight travel 5% to 20% of the time.
Essential Skills:
Standard Minimum Qualifications: Must be eighteen years of age or older. Must pass the Drug Test. Must pass Background Check. Must pass pre-employment test if applicable.
Education Required: The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to the job.
Work Experience Required: 7
Certifications & Licenses: One or more industry certification - CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP
Physical Requirements: 1. Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles. Additional Qualifications: Strong listening, written and verbal communication skills are a must.
Position Purpose:
The Risk Management team plays an integral part in the development, implementation, and compliance of information security across the enterprise. This role within the Risk Management team is responsible for evaluating business practices and controls to determine the level of risk related to information security, physical security, privacy, and compliance.
Major Tasks , Responsibilities and Key Accountabilities
The Lead Security Risk Analyst is responsible for evaluating business practices and controls to determine the level of risk related to information security, physical security, privacy, and compliance. This position will report to the Manager of Information Security and will be responsible for the following activities:
Lead development and evaluations of the risk program that assures the team and solutions lead industry standards
Maintain the IT Security risk assessment framework and matrix for control assessments
Evaluate and determine a risk level for all applicable assets and vendors; determining the assessment frequency and control expectations
Conduct control and risk assessments against identified assets and vendors
Report and advise the Risk Management Council of assessment results and changes to the risk posture
Coordinate with IT and business teams to align control criteria effectively with procurement, compliance, and legal expectations
Advise leadership of industry and security changes on risk management that could be leveraged to improve program implementation
Preferred Qualifications:
Professional experience in analyzing and applying information security and risk management practices
Experience in strategic planning
Security consulting and general industry experience
Experience in executing against a risk management framework evaluating solutions based on standardization
Working experience of national and international regulatory compliance...
Environment: 1. Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Travel: 2. Typically requires overnight travel 5% to 20% of the time.
Essential Skills:
Standard Minimum Qualifications: Must be eighteen years of age or older. Must pass the Drug Test. Must pass Background Check. Must pass pre-employment test if applicable.
Education Required: The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to the job.
Work Experience Required: 7
Certifications & Licenses: One or more industry certification - CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP
Physical Requirements: 1. Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles. Additional Qualifications: Strong listening, written and verbal communication skills are a must.