National Grid (https:\\careers.nationalgridus.com)
Full Time Employee
The RiskAnalyst serves as a subject matter expert in the following areas:
Cyber Security Risk
This person will be responsible foradhering to and contributing to the continuous improvement of a robust riskframework, thus ensuring that the organization identifies, responds,communicates and monitors business risks that have either an IS and/or cybersecurity component to them. Ability to collaboration and communicate with ISLeadership, business leadership and corporate risk leadership is essential inthis position.
Perform security risk assessments
Assessing security and business risks
Analyzing and presenting critical risks and potential remediation activities to all levels of management within the business.
Experience in implementing compliance and/or risk programs for regulatory frameworks.
Experience in conducting internal and external IS/Cyber Security risk assessments.
Experience in completing third party security risk assessments and third party reviews.
Able to demonstrate a high degree of credibility and influence senior stakeholders within the Organization.
Ability to communicate effectively both orally and in writing.
Thorough knowledge of IT and cyber security controls.
Experience in working within internal or external audit, either within a previous organization or as part of a professional services firm.
Excellent knowledge of information security and related principles.
Proven people management skills, with a track record of strong communication, influencing and motivational skills.
Able to operate as a highly independent worker and as part of a strong team with a collaborative approach.
Prior Critical National Infrastructure (CNI) and utility industry experience preferred.
Experience managing an IT Risk Register and tracking remediation activities.
Experience working within an IT Controls Framework and evaluating related risks.
Experience with analyzing various IS risks in an effort to prepare a business risk profile.
Familiar with NERC CIP Standards, SOX Regulatory Requirements, PCI Requirements.
Educated to degree level (or equivalent combination of education and experience)
4-6 years experience the risk management or related field
Information Security Qualifications such as CISSP
IS Risk qualifications such as CRISC
IS Governance qualifications such as CGEIT
Audit qualifications such as CISA
National Grid is an equal opportunity employer that values a broad diversity of talent, knowledge, experience and expertise.We foster a culture of inclusion that drives employee engagement to deliver superior performance to the communities we serve.National Grid is proud to be an affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team.
:IS DIgital Security & Risk
:IS Digital Security & Risk
:Sep 27, 2017, 6:41:52 PM