Focus Sales role at api GmbH, engaging clients and supporting Cloud business growth. Collaborate with teams for optimal client service and success in IT products.
About the role
- Lead Information Security & Privacy Advisor at USAA providing expertise in managing Information Security and Privacy risks. Collaborating across departments to ensure compliance and effective control implementations.
Responsibilities
- Provide critical support and hands-on expertise in managing Information Security and Privacy risks and controls across various technology initiatives.
- Identify and assess risks, driving remediation efforts for audit and exam findings.
- Manage security-related issues and conduct rigorous control testing and validation.
- Partner closely with engineering, product, and other business units to ensure robust security controls are implemented and maintained.
- Promote risk-awareness and the overall effectiveness of risk and compliance management programs.
- Manage risk assessment data and use critical thinking to identify key data-driven insights tied to the first line of defense.
- Direct and oversee multiple initiatives in support of risk and/or regulatory compliance related initiatives.
Requirements
- Bachelor’s degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.
- 8 years of experience supporting risk-related, compliance related, or business control design activities; OR 8 years of experience in a relevant quantitative discipline; OR Advanced degree or designation in a risk management or quantitative discipline, and 6 years of experience supporting risk-related, and/or compliance-related, or business control design activities; OR PhD in a risk management or quantitative discipline, and 4 years of experience supporting risk-related, and/or compliance-related, or business control design activities.
- Deep technical understanding of Cybersecurity principles, common vulnerabilities, and security control mechanisms across various domains (e.g., network security, endpoint security, cloud security, application security).
- Certifications such as CISSP, CISM, CRISC, CIPP, or GIAC certifications are highly desirable.
- Familiarity with security frameworks (e.g., NIST Cybersecurity Framework, ISO 27001) and their application in control design and assessment.
- Demonstrated ability to manage complex issues and drive them to resolution in dynamic and uncertain environments.
- Excellent communication and interpersonal skills, with the ability to influence and collaborate effectively with technical and non-technical stakeholders.
Benefits
- comprehensive medical, dental and vision plans
- 401(k)
- pension
- life insurance
- parental benefits
- adoption assistance
- paid time off program with paid holidays plus 16 paid volunteer hours
- various wellness programs
- career path planning and continuing education
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Engineering Manager leading Detection & Response team at Snap. Overseeing security monitoring and team collaboration on high - impact initiatives.
Mid - Level Security Design & Development Specialist at Boeing involved in directory services infrastructure. Collaborating with a team of senior technical experts in a fast - paced environment.
Application Security Specialist conducting SAST and DAST analyses at TEHORA to enhance digital healthcare security. Responsible for code reviews, OWASP recommendations, and participation in intrusion tests.
Facilities and Security Coordinator providing operational support for facility operations at Westinghouse. Coordinating administrative tasks, reporting, and ensuring compliance in facility management.
Information Security Specialist ensuring digital security and compliance at cyberunity AG in Zürich. Collaborating with IT teams to implement security measures and address vulnerabilities.
Data & Cloud Security Manager overseeing security programs for protecting sensitive data at Digital Realty. Leading initiatives in data protection and cloud security across various environments.
Cybersecurity GRC Lead responsible for governance, risk, and compliance at Emerson's Industrial IoT division. Shaping the cybersecurity agenda within a fast - evolving environment.
Security staff conducting access and entry controls and ensuring safety standards in Hamburg, Germany. Team collaboration and reporting tasks required for effective security measures.
Security Personnel responsible for access and entry controls, ensuring safety standards at proSicherheit. Collaborating on reports and preventing criminal activities in various settings.