Assoc Dir-Sec Risk Mgt

About The Position

Requirements

• Bachelor's degree or six or more years of work experience.
• Six or more years of relevant work experience.
• Experience developing and implementing Technical Education and Awareness programs and strategies.
• Experience in one or more of the following fields: Cyber Security, Learning & Development, Communications, IT, Application Development or Network Engineering.

Nice To Haves

• A degree in Cyber Security, Computer Science, Information Systems or related fields.
• Strong understanding of Verizon cybersecurity services and capabilities.
• Advanced knowledge of cybersecurity frameworks (i.e. National Institute of Standards and Technology (NIST) special publications and frameworks).
• Solid understanding of fundamental cybersecurity concepts, threats, vulnerabilities, and mitigation strategies.
• Ability to consistently exercise sound judgment, perform thorough analysis, and recommend decisions in an organized manner.
• Strong project management experience and the ability to prioritize and balance multiple projects simultaneously.
• Experience leading a small team, setting performance goals, conducting performance reviews, and addressing performance issues.
• Excellent communication, interpersonal, and collaboration skills, with the ability to effectively interact with technical and business senior staff.
• Excellent analytical skills with the ability to analyze data, identify trends, and make data-driven decisions.
• Advanced experience using SmartSheets, Excel, Sheets.
• Proven ability to build strong relationships with stakeholders across the organization and manage relationships with external vendors.
• Security certifications such as CISSP, CISM, CRISC, CompTIA Security+.
• Demonstrated vendor management experience.

Responsibilities

• Lead the strategy planning cycle, including the evaluation of inputs, quarterly alignment, and prioritization of business objectives.
• Monitor Verizon's business initiatives and significant external factors to identify key items for the strategic roadmap.
• Collaborate with stakeholders to identify gaps and process improvements needed to enhance business protections and achieve risk appetite and maturity goals.
• Develop a cohesive strategic plan, including strategic initiatives and a comprehensive scorecard to measure effectiveness.
• Maintain a multi-year strategic roadmap of security initiatives, strategic outcomes, and end vision.
• Manage the CISO's strategic governance, including board reporting and analytics.
• Socialize and align on periodic updates to the cyber strategy with cybersecurity leadership.
• Update the strategic roadmap with new initiatives and underlying projects.
• Work closely with cybersecurity teams, function owners, and risk and control teams to report on the progress of cybersecurity strategic initiatives to senior leaders.
• Maintain a strategic metrics framework, reporting platform, and publication of results.
• Facilitate the execution of the cybersecurity roadmap and drive accountability.
• Evaluate current-state cyber program maturity and define target-state maturity levels aligned with Verizon's risk appetite and business objectives.
• Design and manage the continuous monitoring program to track cybersecurity maturity and identify areas for ongoing improvement.
• Execute the annual cyber maturity assessment plan, aligned with industry frameworks and tailored to Verizon's risks, threats, and business objectives.
• Maintain a deep understanding of cybersecurity frameworks (e.g., NIST CSF) and their application to Verizon's environment.
• Develop and deliver executive-level reports on cybersecurity maturity, providing clear and concise insights into progress, challenges, and recommendations.
• Evaluate and manage relationships with external vendors providing maturity assessment and audit tools and services, ensuring alignment with Verizon's security objectives and budget.
• Drive automation and continuous improvement by understanding processes, evaluating and implementing automation tools, and measuring the effectiveness of automation initiatives.

Benefits

• Medical, dental, vision insurance.
• Short and long term disability.
• Basic life insurance, supplemental life insurance, AD&D insurance.
• Identity theft protection.
• Pet insurance and group home & auto insurance.
• Matched 401(k) savings plan.
• Stock incentive programs.
• Up to 8 company paid holidays per year.
• Up to 6 personal days per year.
• Parental leave and adoption assistance.
• Tuition assistance.
• 15 days of vacation per year, which grows with additional service.