No more applications are being accepted for this job
- Dearborn , MI 48121
- Identify and implement policy process improvements, integration and automation opportunities
- Bachelor's degree in a Technical Discipline
Senior Cyber Security - Dearborn, MI, United States - HonorVet Technologies
Description
Position :
Cyber Security Senior
Location :
Duration:
-12 Months
Position Description:
The Information Security Policy (ISP) Analyst role is responsible for driving visibility, understanding and consistency of the information security policies, standards, procedures and guidelines which govern the use of information, data, technology, processing systems, and facilities throughout Ford.
Skills Required:
Facilitate the creation and modernization of information security policies, standards, procedures and guidelines
Work with cross-functional and cross regional Authors and Subject Matter Experts (SMEs) with varying levels of business/technical skills
Lead the Policy, Control and Risk (PCR) governance process to support risk/control changes, regulatory requirements, emerging technologies, and enterprise objectives
Execute reviews to ensure proper efficacy, conciseness, and alignment
Facilitate risk assessments by performing quantitative and qualitative analysis of risk data on Application and Infrastructure Risk/Control Framework
Provide consultation and direction to IT and business teams pertaining to the ISP
Promote ISP awareness with audience specific training and communications
Partner with Authors and SMEs on communication efforts to inform Key Information Security Stakeholders of new and updated policy documents
Identify policy portal defects and tool enhancements
Produce monthly policy operations and project metrics
Support the policy exception request (PER) process, reporting and governance
Experience Required:
1-3 years of experience working with ISO 27001/2 standards, Information Security policies, or IT risks and controls
Excellent verbal and written communication
Strong organizational skills; able to advance multiple work streams concurrently
Experience Preferred:
Process improvement mindset
Experience performing IT risk assessments
Knowledge of application development and IT security and controls
Prior experience working with GRC and Policy Management tools
Understanding of Compliance and Regulatory requirements e.g. (S-Ox, HIPAA, GLBA etc.)
Education Required: