This company is committed to hiring Veterans

Sr Information Security Spclst (Customer & Vendor Risk Management)

This job is no longer active. View similar jobs.

POST DATE 9/10/2016
END DATE 10/11/2016

ARRIS Group, Inc. Suwanee, GA

Company
ARRIS Group, Inc.
Job Classification
Full Time
Company Ref #
16000179
AJE Ref #
576130154
Location
Suwanee, GA
Experience
Mid-Career (2 - 15 years)
Job Type
Regular
Education
Bachelors Degree

JOB DESCRIPTION

APPLY
ARRIS is a premier video and broadband technology company that transforms how service providers worldwide deliver entertainment and communications without boundaries. Its powerful end-to-end platforms enable service and content providers to improve the way people connect with each other and with their favorite content. The Companys vision and expertise continue to drive the industrys innovations, as they have for more than 60 years. Headquartered north of Atlanta, in Suwanee, Georgia, ARRIS has R&D, sales and support centers throughout the world.

Sr. Security Specialist Customer and Vendor Risk Management



This position will be within the Compliance & Governance group within the Information Security team. This role does require some technical background and skills, but will be mostly business-focused and often times will be customer-facing.



*

Manages the entire Customer and Vendor Risk Management Program
*

Works extensively with legal and sales functions to evaluate security requirements/contracts for both vendors and customers.
*

Work with procurement and other business units to conduct vendor security assessments and provided analysis to relevant stakeholders.
*

Makes security control recommendations where needed.
*

Works with corporate Risk Management function to ensure insurance policies are adequate.
*

Serves as SME to legal and HR to provide guidance on matters of international regulations.
*

Participates on the Privacy Committee activities.
*

Measures and tracks internal & external SLAs
*

Reviews internal/external SLAs to ensure they meet the needs of the business.





You must have two years minimum of experience in the field of information security.

Minimum four year bachelor's degree in Information Technology Management or Business Management or other related field required.



Additional Skills

*

At least one major Information Security professional certification (e.g. CISSP, CISA, CISM, CRISC, HISP, etc).
*

Must have exceptional attention to detail. Must have strong organizational skills and ability to deliver on commitments on schedule.
*

Must have some experience in accounting & finance.
*

Must have exceptional communication skills, both speaking and writing.
*

Intermediate knowledge of various security frameworks and international regulations.
*

Ability to manage multiple tasks simultaneously.





Preferred Qualifications



*

Graduate degree in business, finance, or related information assurance field.
*

3-5 years total working experience in information security, ideally in Vendor Risk Management.
*

CISM, CRISC, or CISA certification (current and verifiable).
*

Experience implementing and managing a Vendor Risk Management Program.
*

White hat or ethical hacking experience/certifications.
*

Working knowledge and experience of Risk Analysis methods.
*

Experience conducting Business Impact Assessments (BIAs).
*

Knowledge of ERP systems (e.g. Oracle, Peoplesoft, Salesforce, etc)
*

Experience with security management frameworks, specifically ISO27001 and ISO27002.
*

Basic background in a variety of technologies.

Other information:

*

Travel is not expected for this position, but may be required up to 5% of the time.
*

As with many other technology-related positions, after hours or weekend work may be required based on urgent situations or business needs.

As an EOE/AA employer, ARRIS will not discriminate in its employment practices due to an applicants race, color, religion, sex, national origin, and veteran or disability status.