Senior Manager, Operational Risk Management - Texas, United States - iHeartMedia

    iHeartMedia
    iHeartMedia Texas, United States

    2 weeks ago

    Default job background
    Full time
    Description

    What We Need:

    The iHeartMedia Office of the Chief Information Security Officer (CISO) seeks a Senior Manager, Operational Risk Management. This leader will report to the Director of Governance, Risk & Compliance. This job role requires a very motivated, goal-driven individual with expertise and experience in operational (IT/Cyber) and enterprise risk management. The right individual must be detail oriented, with a strong work ethic, able to work with minimal supervision and have excellent interpersonal and relationship skills. The Senior Manager's primary job role is to reduce risk to iHeartMedia's enterprise operations and information systems.

    What You'll Do:

    • Conduct operational and enterprise risk management process activities to identify, analyze, and reduce risk within the organization.
    • Build relationships with security and IT leaders to assist in proactively identifying and understanding technology risks and impact(s) to the operating environment.
    • Advise senior security leadership regarding appropriate policies and processes by leveraging risk management metrics, risk strategies, and risk indicators across the business.
    • Oversee the continuous monitoring and escalation of Key Risk Indicators and issues within the environment to ensure timely and appropriate mitigation controls are implemented.
    • Utilize previous experience to bring industry leading standards and risk practices to the organization.
    • Act as primary liaison for operational and cyber risk related questions with both internal and external entities.
    • Promote a strong risk management culture and discipline throughout the business.

    What You'll Need:

    • Strong hands-on experience with the risk management process (identification, analysis, response, aggregation, reporting, etc.).
    • Thorough experience in communicating technology risks and impacts to the operating environment.
    • Capability to proactively manage and resolve residual risk conflicts and effectively defend risk decisions with objective rationale.
    • Practical experience with tools or models such as FAIR, NIST Risk Management, and Monte Carlo Simulation.
    • Substantial involvement in each phase of the risk process, with an emphasis on risk analysis, risk responses, risk quantification, and the determination of residual risk.
    • Experience in the aggregation and reporting of risks.
    • risk quantification
    • Familiarity with GRC platforms such as RSA Archer or ServiceNow, or creative/innovation mindset to design or build an in-house solution.
    • Knowledge of current operational and security threats and security controls.
    • Record of establishing and defining risk and control taxonomies.
    • Demonstrated capability in stablishing a GRC Data Model which incorporates issues, findings, incidents, etc.
    • Experience in building, managing, and maintaining a risk register.
    • Hands-on practice in determining risk tolerance.
    • 7+ years of hands-on experience in Operational, Information Technology, Cyber, or Enterprise Risk Management function or role.
    • Proven stakeholder management and leadership skills demonstrating the capability to influence effectively.
    • Desired certifications: CRISC, CISA, or other risk certifications with a combination of a PMP.
    • Bachelor's Degree; MS Degree desirable.

    What You'll Bring:

    • Respect for others and a strong belief that others should do this in return
    • Full proficiency and understanding of job function
    • Ability to work independently with minimal guidance
    • In-depth knowledge of key business drivers and how this impacts your team
    • Experience in team and project management for mid-sized projects
    • Ability to recognize and mitigate risk
    • Confidence to solve complex problems using multiple sources of information
    • Growth mindset and desire for continued knowledge sharing and learning
    • Understanding of impact of your own decisions
    • Ability to identify new opportunities for continued improvement across business
    • Comfort acting as a trusted advisor for colleagues with less experience
    • Ability to manage complex and confidential information and to influence others to build consensus across all levels

    Location:

    VIRTUAL CST, TX

    Position Type:

    Regular

    Time Type:

    Full time

    Pay Type:

    Salaried

    Benefits:

    iHeartMedia's benefits offering is flexible and offers a variety of choices to meet the diverse needs of our changing workforce, including the following:

    • Employer sponsored medical, dental and vision with a variety of coverage options
    • Company provided and supplemental life insurance
    • Paid vacation and sick time
    • Paid company holidays, including a floating holiday that enable our employees to celebrate the holiday of their choosing
    • A Spirit day to encourage and allow our employees to more easily volunteer in their community
    • A 401K plan
    • Employee Assistance Program (EAP) at no cost – services include telephonic counseling sessions, consultation on legal and financial matters, emotional well-being, family and caregiving
    • ​A range of additional voluntary programs, such as spending accounts, student loan refinancing, accident insurance and more

    We are accepting applications for this role on an ongoing basis.