Director, Information Security Risk MGMT
Discovery Communications
Sterling, VAThis was removed by the employer on 7/31/2019 12:32:00 PM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Browse the TV Network Category
Search for Director, Information Security Risk MGMT jobs in Sterling-VA
Search all Director, Information Security Risk MGMT postings
Full Time Job
The Role
The Director, Information Security Risk Management will be responsible for developing and managing the information security risk program, including implementing and maintaining an information security risk management strategy that informs and facilitates risk-based decisions, while also supporting and participating in broader information security governance activities. Responsibilities will include consultation, business-as-usual delivery on risk assessments, process improvement and driving transformational activities underway.
Responsibilities
1. Serve as the primary point of contact for information security risk, consulting as needed with internal customers
2. Integrate information security risk management into Discovery’s direct-to-consumer business
3. Collaborate with various operational and business teams to drive a cohesive view of information security risk throughout Discovery
4. Develop formal processes and procedures to support Discovery’s risk management strategy
5. Develop and perform risk identification and assessment activities that address information security threats
6. Manage the risk assessment process to facilitate implementing appropriate courses of actions to respond to risks
7. Develop, implement, and maintain accurate documentation and reporting of information security risk, and risk remediation activities
8. Keep aware of local, national and international trends and developments in information security, relate them to the needs of Discovery, and proactively communicate at the appropriate level
Requirements
* Bachelor’s or Master’s degree in related field, such as Business, IT, Computer Science, or equivalent work experience
* 8 years of work experience in Information Security, Risk & Compliance, or Information Technology
* 2 years leadership experience
* CISSP, CISM, CRISC or similar industry-relevant certification
* Functional knowledge of CISSP security domains and information security industry standard and best practices
* Functional knowledge of and experience applying governance frameworks such as ISO 27001, NIST, PCI, Sarbanes Oxley, COBIT, etc
* Experience managing complex initiatives in a dynamic, fast-paced environment
* Ability to professionally interface and communicate with all levels of management and staff regarding Information Security services
* Experience working with commercial GRC solutions a plus
* Strong verbal and written communication skills
* Strong interpersonal skills
* Must have the legal right to work in the United States
Sterling, Virginia, VA