Cognizant Job - 41407915 | CareerArc
  Search for More Jobs
Get alerts for jobs like this Get jobs like this tweeted to you
Company: Cognizant
Location: Teaneck, NJ
Career Level: Mid-Senior Level
Industries: Technology, Software, IT, Electronics

Description

Senior Manager – Security & Technology Risk Management

Security and Technology Risk Management (S&T RM) program encompasses a global team that act as Integrated Risk Management to the Organization, who are responsible for ensuring all security and IT technology controls are operating effectively and technology risks pertaining to corporate infrastructure are managed end to end. This role is for S&T IRM Control Validation and Assurance team within Security & technology function, who will involve into continuous control testing program for corporate cyber security infrastructure to identify, analyze and mitigate technology risks.

Responsibilities:

  • We are seeking a Senior Manager – Security & Technology Risk Management, to be part of Corporate Security Group, and play a key role in the overall management of a Cognizant-wide Security and Technology Risk Management practice for Cognizant Corporate.
  • Validation of policies and standards compliance set by enterprise standards as they apply to cyber security requirements
  • Developing control testing framework, assessment questionnaire, test procedures and technical and functional documents required for Control assurance group
  • Shall serve as the subject matter expert for cyber defense framework and control testing related activities, as well as for all security matters 
  • Perform periodic technology control testing/ assessments and conduct related ongoing compliance monitoring activities with corporate standards as well as measure alignment with NIST 800-53 and ISO27001, etc. 
  • Perform NIST CSF capability maturity model assessment on half-yearly basis 
  • Provide periodic updates to the management on compliance efforts through reports, metrics, deck
  • Responsible for managing Monthly Business Review (MBR) meeting with leadership, wherein team's utilization & performance will reviewed
  • Provide periodic updates to the management on compliance efforts 
  • Work with other groups to develop and monitor security metrics for corporate functions 
  • Ability to work with a sense of urgency and attention to detail. 
  • Ability to present complex solutions and methods to business community. 
  • Ability to interact with all levels of management stuff 
  • Independent thinking, willingness to "step outside the box" and take reasonable, calculated risks. 
  • Must be reliable and adaptable 
  • Excellent written and verbal communication and organizational skills. 
  • Outstanding work ethic 
  • Passionate to learn about securing emerging threats and technologies 
  • Strong team player that collaborates well with others to solve problems and actively incorporate input from various sources. 
  • Experience working with global teams across time zones, cultures, and languages 

Requirements: 

  • A four-year college degree in Computer Science or equivalent certification is required. 
  • A minimum of 12+ years of experience working in a technical security position, architecture, Network/Infrastructure operations and proven track record of leading a team or individual contributor role
  • In-depth understanding of network and system security technology and practices across all major-computing areas (client/server, Cloud, IoT, IPA, AI, data science) with a special emphasis on Internet related technology. 
  • Hands-on knowledge of controls design, controls testing and risk assessments.
  • Significant knowledge of Cybersecurity organization practices, risk management principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
  • Working knowledge on Cyber Kill Chain and MITRE ATT&CK Framework implementation would be highly preferred
  • Experience in developing and embedding Cyber risk policies, setting Cyber risk appetite and embed processes to assess performance against the same
  • Experience in leading reviews, where these relate to Cyber risk and understand the lessons learned.
  • Delivery of gap assessments against Cyber Security policy, standards and technology risk requirements
  • Strong understanding of cybersecurity products and technologies utilized in Enterprise environments
  • Strong understanding of Cloud computing platforms, primarily Amazon AWS and Microsoft Azure.
  • Understanding of threat modeling techniques with some experience in developing threat models
  • Significant experience of reporting and presenting cyber risks and controls information with the wider business, regulatory and industry context, in a simple and effective way.
  • Excellent stakeholder management skills, with the ability to successfully navigate a complex organization as well as build strong relationships and work collaboratively with teams across the business
  • Demonstrates proven expertise and success managing project work streams in system security, cyber security controls or information security management environment, specifically on the following information security domains: 
  • Security Architecture and Strategy (Integrated Risk Management) 
  • Identity & Access Management 
  • Data Leakage Prevention; Focus on Data Flow, Encryption 
  • Large Complex Program Execution/Implementation 
  • Security Function Design and Governance 
  • Incident Management 
  • Security Infrastructure 
  • Cloud Security 
  • Ability to operate remotely, in a diverse and multi-cultural environment with international work or consultancy exposure
  • A high level of integrity and trust 
  • Focused personality, with a demonstrated ability to take initiative, successfully handle and prioritize multiple competing assignments and effectively manage deadlines 
  • Security certifications desired such as CISSP, SANS GIAC Certifications, CISA and Cloud certifications etc. 

Employee Status : Full Time Employee

Shift : Day Job

Travel : No

Job Posting : Oct 27 2021

About Cognizant

Cognizant (Nasdaq-100: CTSH) is one of the world's leading professional services companies, transforming clients' business, operating and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant is ranked 185 on the Fortune 500 and is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com or follow us @USJobsCognizant.

Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview.

Cognizant is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

If you have a disability that requires a reasonable accommodation to search for a job opening or submit an application, please email CareersNA2@cognizant.com with your request and contact information.


 Apply on company website