Senior Cybersecurity Risk Assessor

Senior Cybersecurity Risk Assessor
Description -
As the world around us becomes more connected and more digital, there are increased opportunities for fraud and disruption due to cybersecurity attacks. The need for companies, products, and services to be secure is more important than ever in this constantly changing landscape.
Are you passionate about keeping good people safe from bad actors? We are too! We are HP Cybersecurity and we are tasked with the security of the HP enterprise. As HP continues our digital transformation, the work of the cybersecurity professional is never complete and is always interesting. Come be a part of making a difference with us!
The HP Cybersecurity Sr. Risk Assessor is responsible for end-to-end cyber security risk management, including risk identification, analysis and evaluation, identifying remediation requirements, and supporting remediation efforts. Defined risk assessment processes and risk management methodologies will be utilized to meet these objectives. This role also contributes to and/or leads continuous process improvements to enhance HP's cyber security GRC capabilities.
This position allows for remote work with the expectation that the employee will be available to come into the office as needed for meetings and team collaboration. We may consider the option of fully remote work for the right candidate.
What a Cybersecurity Risk Assessor does at HP:

• Scopes, manages, and performs cyber security risk and/or compliance assessments.
• Maintains the risk register for all assessed assets utilizing eGRC/IRM solution.
• Works with IT and business stakeholders to ensure accurate asset inventories are maintained.
• Provides risk mitigation/remediation guidance to stakeholders.
• Supports internal and external audits.
• Contributes to and/or leads the continuous improvement and maturation of GRC practices.
• Prepares and presents risk management reports, scorecards, and briefings as required
• Monitors industry cybersecurity threats, cybersecurity best practices, regulatory changes, corporate updates, and geo-political changes impacting HP's security

Individuals who thrive in this role at HP, typically have:

• Bachelor's degree (preferably in computer science, engineering or related area of study, or equivalent experience).
• Typically, 6+ years of relevant experience, including conducting risk and compliance assessments.
• Technical Cyber Security Certification through one of the recognized bodies preferred: SANS, ISACA, (ICS)2, CompTIA, Cisco, CERT.
• Solid working knowledge of industry frameworks and standards, including ISO27001/27002/27005, NIST CSF, NIST 800-53, SOC2, PCI-DSS, SIG.
• Knowledge of common GRC processes, including risk management, exception to policy, policy management, controls management/mapping, auditing.
• Results driven, strong analytical skills, ability to connect the dots to make better decisions.
• Able to deal will with ambiguity, balancing risk with potential delays.
• Fluent in Oral and written communications.
• Ability to work effectively in a team and with various stakeholders at various organization levels
• Excellent responsiveness, organizational and time management skills.
• Pro-active in seeking problem resolution.
• Experience in data extraction, database management, and Power BI dashboard design & maintenance, SharePoint design & maintenance, Excel advanced functionality is a plus.

About the team:
The Cybersecurity Governance, Risk Management and Compliance team is a key pillar of the Cybersecurity organization responsible for protecting the HP Enterprise against cyber threats. The GRC team is a diverse group of cyber security professionals who collaborate with all disciplines within Cybersecurity as well as business and functional stakeholders as trusted advisors to effectively manage cyber security risks to the business.
About HP:
You're out to reimagine and reinvent what's possible-in your career as well as the world around you. So are we. We love taking on tough challenges, disrupting the status quo, and creating what's next. We're in search of talented people who are inspired by big challenges, driven to learn and grow, and dedicated to making a meaningful difference.
HP is an equal opportunity employer: https://www8.hp.com/h20195/v2/GetDocument.aspx?docname=c08129225
Job -
Information Technology
Schedule -
Full time
Shift -
No shift premium (United States of America)
Travel -
Relocation -
Yes
EEO Tagline -
HP Inc. is EEO F/M/Protected Veteran/ Individual with Disabilities.