Jobs
>
New York City

    Governance, Risk, Compliance Technology Lead - New York, United States - First Quality

    First Quality
    First Quality New York, United States

    1 week ago

    Default job background
    Description


    First Quality was founded in 1989 and, in nearly three decades, has grown to be a global privately held company with over 4,000 employees.

    Its corporate offices are located in Great Neck, New York, with manufacturing facilities and offices in Pennsylvania, South Carolina, Georgia, and Canada.

    First Quality is a diversified family of companies manufacturing consumer products ranging from Absorbent Hygiene (adult incontinence, feminine care, and baby care), Tissue (bath and towel), and Industrial (print and packaging materials), serving institutional and retail markets throughout the world.

    First Quality focuses on private label and branded product lines.


    Our core business philosophy is built on a proud culture driven by safety and quality, respect, humility, integrity, customer focus, and teamwork.

    With leading edge manufacturing technologies and processes and visionary leadership, First Quality is positioned to continue significant growth in the coming years.


    The Information Security GRC Technology Risk Lead is responsible for the development and delivery of First Quality's Information Security Program which includes information security risk management across First Quality Enterprises.

    This program ensures that all physical and digital information assets and technologies, as well as employee, client and First Quality data are adequately protected.

    This role is responsible for defining and maturing the 2nd line of defense and providing management with updates on the overall security posture of the organization.

    This role currently has 1 direct report and will report to the Manager of Information Security Governance, Risk, Compliance and Strategy.


    ESSENTIAL DUTIES AND RESPONSIBILITIES


    The GRC Technology Risk Lead will be tasked with leading the following Information Security Programs; Enterprise Technology Risk Management, Data Governance, Security Awareness & Training, and Compliance.

    This position will work alongside the Manager of Information Security Governance and other IS team members to identify ways to innovate and mature the Information Security program.

    This Lead will be directly responsible for conducting IS technical risk assessment of First Quality systems and platforms against industry standards and frameworks such as the Center for Internet Security (CIS).

    This is a technical role where the candidate is expected to identify system misconfigurations, weaknesses, gaps, and associated risks across a wide variety of platforms.

    Enterprise Technology Risk Management

    Directly responsible for performing technology risk assessments and control assessments to ensure systems and applications (on prem and in the cloud) are complying with First Quality policies, applicable regulatory and legal requirements, and leading industry practices.

    Updating the Business Impact Analysis (BIAs) plans to determine key systems to assess.

    Maturing the Information Security Risk Management Program by managing the IS risk register and ensuring appropriate risk management strategies are in place and followed up on.

    Meet with business stakeholders to quantify risks across the organization and maintain the top board level security risks.

    Develop and drive the implementation of security best practices and standards to mature the overall IS Risk Management Program which includes defining security system and application standards of control.

    Provide solutions to identified issues and risks.

    Works with the Manager of Information Security Governance, Risk, Compliance and Strategy to determine the acceptable level of risk for enterprise computing platforms.

    Liaise with key functional teams such as HR, IT, Digital Marketing, Finance, Internal Audit, Enterprise Risk, Quality, Office of General Counsel and the Business to identify new applications and service providers in use and the associated security controls to secure the data.

    Data Governance

    Investigates incidents and events that include potential HIPAA and other data breaches, data leakage, brand reputational risks, malware propagation, system compromises etc.

    Assist with maturing the Data Loss Prevention Program by reviewing and enhancing security technologies such as MS Purview and Compliance Center, Crowdstrike, Palo Alto, Netskope etc.

    Establish and maintain Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for the Data Governance Security Program and initiatives.

    Security Awareness & Training

    Oversee the enterprise wide IS Security Awareness Program which includes phishing simulations, computer-based training, proactive communications on latest threats, workshops and newsletters.

    Promote a security mindset through enterprise and functional team specific presentations and initiatives.
    Compliance

    Work with the Office of General Counsel and both the Director and Manager of Information Security Governance, Risk, Compliance and Strategy to ensure the Information Security team stays abreast of new regulatory, legal and/or compliance security and privacy requirements to compliance against.

    Ensure compliance with HIPAA and applicable legal and regulatory requirements.


    QUALIFICATIONS:
    To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.
    B.S. in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent); Security certifications such as CompTIA Security +, CISSP, CISA, CCNA or equivalent or working towards certification is preferred
    6+ years' experience working directly in an Information Security or Information Technology department with experience in developing testing security frameworks for compliance
    Hands-on experience with assessing security configurations in Windows/Mac/Linux environments, Azure and other cloud environments, SQL and Oracle databases.
    Experience with Netskope, Azure Purview, OneTrust or similar GRC tools is a plus.
    Experience with Operational Technology (OT) environments and securing manufacturing devices a plus.
    Strong knowledge & understanding of endpoint, server, network design and topologies.
    Strong understanding of a "hacker's" mentality.

    Excellent written and oral communication skills; ability to lead discussions, present complex ideas to audiences of all sizes, and interact with all levels of the organization.

    Ability to self-manage, work independently with little direction and/or supervision but also work collaboratively in a team environment.

    Working knowledge of the following frameworks and regulations: ISO 27001/2, NIST 800-53, NIST CSF, CIS Benchmarks, ISF Standard of Good Practice, HIPAA Privacy Rule and Security Rule, MITTRE ATT&CK framework.

    Ability to prioritize and multitask and a work approach that supports flexibility and adaptability is paramount.
    Detail oriented and ability to think outside of the box to propose solutions to risks.
    Ability to communicate security risks to non-technical business stakeholders.

    Estimated annual base salary range for this position is $110,000- $


    Base pay is only part of our total compensation package, which also includes an attractive annual discretionary bonus and robust suite of employee benefits for which you are eligible to participate in starting on your first day of employment.

    Base pay offered will be determined on an individualized basis and we will consider your location, experience, and other job-related factors.

    First Quality is committed to protecting information under the care of First Quality Enterprises commensurate with leading industry standards and applicable regulations.

    As such, First Quality provides at least annual training regarding data privacy and security to employees who, as a result of their role specifications, may come in to contact with sensitive data.

    First Quality is an Equal Opportunity Employer.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, sexual orientation, gender identification, or protected Veteran status.

    #J-18808-Ljbffr
  • H&M

    HRis Technology Lead

    2 weeks ago

    H&M Secaucus, United States

    **Company Description** · At H&M, our purpose is to liberate fashion for the many. We want to shape a new world in Fashion. A world with one ultimate goal: to unleash your self-expression. As an H&M colleague, you're encouraged to be yourself & more. You'll take on new responsibi ...

  • Infosys

    Technology Lead

    3 weeks ago

    Infosys New York, United States

    Job Description : · Infosys is seeking an · MVNO Architect Manager. · This position will significantly contribute to identifying best-fit architectural solutions for one or more projects; develop design of application, provide regular support/guidance to project teams on comple ...

  • Penn Foster Inc

    Technology Lead

    3 weeks ago

    Penn Foster Inc New York, United States

    Technology Lead (US) · 416554BR · Job Category - Primary · Technology Solutions · Work Location · 410 New York Avenue · Employment Type · Regular · City · Huntington · Time Type · Full Time · State · New York · Hours · 40 · Pay Range · $66,560 - $109,720 annually · Depa ...

  • Infosys

    Technology Lead

    2 weeks ago

    Infosys New York, United States

    Job Description : · Infosys is seeking an · MVNO Solutions Architect. · This position will significantly contribute to identifying best-fit architectural solutions for one or more projects; develop design of application, provide regular support/guidance to project teams on comp ...

  • Sumitomo Mitsui Banking Corporation

    Treasury Business Analyst Technology Lead

    1 week ago

    Sumitomo Mitsui Banking Corporation Jersey City, United States

    SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 ...

  • Phaxis - Internal Talent Acquisition

    Lead Technology Recruiter

    1 week ago

    Phaxis - Internal Talent Acquisition New York, United States

    About the job · Interested in furthering your career in sales and recruitment? Phaxis has 20+ years of experience within the staffing industry. To put it in perspective, we've helped our clients fill nearly 100,000 unique roles across industries ranging from Healthcare to Techn ...

  • Franklin Fitch

    Information Technology Lead

    4 hours ago

    Franklin Fitch New York, United States

    IT LEAD | LAW FIRM | NEW YORK | $100,000 - $140,000 DOE · Do you want a take ownership of an environment? · Would you like to work for a growing law firm? · Are you looking to make recommendations & changes to an infrastructure? · If the answer is yes to any of the above, then th ...

  • DoubleVerify

    HR Technology Lead

    6 days ago

    DoubleVerify New York, United States

    About DoubleVerify · DoubleVerify is the recognized market innovator with the technology and tools that accurately authenticate the quality of digital media and drive ad performance for the world's largest brands. DV provides media transparency and accountability to deliver the ...

  • Selby Jennings

    Research Technology Lead

    3 weeks ago

    Selby Jennings New York, United States

    Senior Software Engineer / Tech Lead | Market Making · New York City, NY · Compensation range: $500-800K+ total & benefits · We're collaborating with an elite hedge fund that is on the lookout for exceptionally talented software engineers to join their team. The role involves wo ...

  • Selby Jennings

    Research Technology Lead

    2 weeks ago

    Selby Jennings New York, United States

    Senior Software Engineer / Tech Lead | Market Making · New York City, NY · Compensation range: $500-800K+ total & benefits · We're collaborating with an elite hedge fund that is on the lookout for exceptionally talented software engineers to join their team. The role involves wo ...

  • Top Tier Financial Institution

    Data and Technology Strategy Lead

    3 weeks ago

    Top Tier Financial Institution New York, United States

    This opportunity is with a top tier financial institution that is a private credit fund manager specializing in real estate and structured loans. The institution is seeking leaders and team players who can work in a collaborative environment and possess drive, integrity, creativi ...

  • Axelon

    Technology Lead Business Analyst

    4 weeks ago

    Axelon New York, United States

    Global Financial Firm located in has an immediate contract opportunity for an experienced "This role is currently on a Hybrid Schedule. You will need to have reliable internet, computer and android or iphone for remote access into the client systems during remote work. We will be ...

  • IBM

    Integration Lead- Product and Technology

    3 weeks ago

    IBM New York, United States

    Introduction · At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are y ...

  • IBM

    Integration Lead- Product and Technology

    3 weeks ago

    IBM New York, United States

    Introduction · At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are ...

  • Chubb

    AVP - Technology Lead

    2 weeks ago

    Chubb Jersey City, United States

    Job Description · What you will do: · We are looking for an experienced Technical Delivery Lead that is responsible for overall technology planning and delivery of the project, architectural design, end to end testing and deployment of features for the application. . The techni ...

  • Chubb

    AVP - Technology Lead

    3 weeks ago

    Chubb Jersey City, United States

    Job DescriptionWhat you will do:We are looking for an experienced Technical Delivery Lead that is responsible for overall technology planning and delivery of the project, architectural design, end to end testing and deployment of features for the application. . The technical deli ...

  • JPMorgan Chase Bank, N.A.

    Technology Risk and Controls Lead

    5 days ago

    JPMorgan Chase Bank, N.A. New York, United States

    As a Technology Risk and Controls Lead at JPMorgan Chase within the Cybersecurity & Technology Controls Organization, you'll engage in areas of development, design, and monitoring of corporate and world-wide control programs and acts as a liaison between management, the Lines of ...

  • Citigroup Inc

    LATAM FX Technology Lead

    3 weeks ago

    Citigroup Inc New York, United States

    This role is for a technology lead to help drive the FX Technology strategic initiatives in the region. FX is a very critical franchise in the region, and this person will be working with technology and business stakeholders globally, regionally and locally, to support the busine ...

  • Citrix Systems Inc

    Lead Account Technology Strategist

    3 weeks ago

    Citrix Systems Inc New York, United States

    Position Summary · The Account Technology Strategist is responsible for identifying and matching technologies with a customer's business issues and objectives, driving innovation and wide-scale adoption. With wide-ranging field technology sales experience, uses professional conc ...

  • TWO95 International

    Director, Technology PMO(Delivery Lead)

    3 days ago

    TWO95 International New York, United States Permanent

    Title : Director, Technology PMO(Delivery Lead) · Location : NYC, NY · Duration : Full Time position · Requirements · Required Skills :Bachelor's degree with 10+ years of IT project & program management experience · 5+ years leading Program and Project Mgmt. Office preferably in ...