Senior Cyber Security - Dearborn, MI, United States - HonorVet Technologies

    HonorVet Technologies
    HonorVet Technologies Dearborn, MI, United States

    4 weeks ago

    Default job background
    Description

    Position :
    Cyber Security Senior


    Location :

    • Dearborn , MI 48121

    Duration:
    -12 Months


    Position Description:

    The Information Security Policy (ISP) Analyst role is responsible for driving visibility, understanding and consistency of the information security policies, standards, procedures and guidelines which govern the use of information, data, technology, processing systems, and facilities throughout Ford.


    Skills Required:
    Facilitate the creation and modernization of information security policies, standards, procedures and guidelines
    Work with cross-functional and cross regional Authors and Subject Matter Experts (SMEs) with varying levels of business/technical skills
    Lead the Policy, Control and Risk (PCR) governance process to support risk/control changes, regulatory requirements, emerging technologies, and enterprise objectives
    Execute reviews to ensure proper efficacy, conciseness, and alignment
    Facilitate risk assessments by performing quantitative and qualitative analysis of risk data on Application and Infrastructure Risk/Control Framework
    Provide consultation and direction to IT and business teams pertaining to the ISP
    Promote ISP awareness with audience specific training and communications
    Partner with Authors and SMEs on communication efforts to inform Key Information Security Stakeholders of new and updated policy documents

    Research industry best practices and consult advisory groups

    • Identify and implement policy process improvements, integration and automation opportunities
    Incorporate future policy enhancements and innovations into the Governance, Risk and Compliance (GRC) strategy
    Identify policy portal defects and tool enhancements
    Produce monthly policy operations and project metrics
    Support the policy exception request (PER) process, reporting and governance

    Experience Required:

    1-3 years of experience working with ISO 27001/2 standards, Information Security policies, or IT risks and controls
    Excellent verbal and written communication
    Strong organizational skills; able to advance multiple work streams concurrently


    Experience Preferred:
    Process improvement mindset
    Experience performing IT risk assessments
    Knowledge of application development and IT security and controls
    Prior experience working with GRC and Policy Management tools
    Understanding of Compliance and Regulatory requirements e.g. (S-Ox, HIPAA, GLBA etc.)


    Education Required:

    • Bachelor's degree in a Technical Discipline
    #J-18808-Ljbffr