Compliance Senior Manager

Description -

HP is seeking a highly motivated and experienced Compliance Senior Manager to join our Cybersecurity, Governance, Risk, and Compliance organization. The successful candidate will specialize in cybersecurity compliance, third-party assurance, and various client audits and assessments. The Compliance Senior Manager will assist with overseeing complex NIST assessment and various audits; and assist with orchestrating evidence-gathering, management, and representation during high-valued client audits.  Additionally, the role will serve as a highly visible support role by managing cybersecurity compliance-related functions for our global organization.

Key Responsibilities

• Manage, oversee, and support the Compliance program for GRC, and successfully lead Compliance pillar team members.
• Overseeing complex NIST assessment, and various audits; and assist with orchestrating evidence gathering, management, and representation during high-valued client audits. 
• Major support role to orchestrating evidence gathering, management, and representation of Cybersecurity during high-valued client audits. 
• Mature third-party assurance processes.
• Creates and maintains a cyber compliance culture that ensures compliance to external requirements such as PCI DSS.
• Ensure HP’s Compliance documents are well documented, and are in alignment to regulatory requirements, industry standards, and supports the enablement of the business.
• Assist in driving a cyber compliance culture across the organization.
• Build, sustain, and report on Key Risk Indicator (KRI), Key Performance Indicator (KPI), and other metrics representing the Compliance program progress and performance on Key Performance Objectives; and Key Control Indicators (KCI) to identify how well controls are supporting the organization.
• Apply data driven insights to learn about and implement models to automate metrics and KRIs and KPIs and KCIs as part of our cybersecurity.
• Support Cybersecurity’s GRC Compliance program by performing risk analysis, responding to internal business inquiries regarding GRC service offerings, and supporting workflows across Governance, Risk and Compliance pillars.
• Collaborate with other departments to ensure alignment with company goals.
• Assist with the development and maintaining of compliance monitoring programs, including development and enrichment of compliance related documentation.
• Assist with identifying, defining, and drive the scope of projects and initiatives to assist with driving maturity across the compliance function.
• Provide guidance and support to management and staff on cyber compliance matters.

Qualifications

• 10+ years of relevant experience in cybersecurity and/or technology.
• Experienced people leader that cultivates a team, drive program maturity, and can effectively lead their Team through transformation and change.
• Experienced with industry standards such as NIST (CSF) 2.0, NIST800-53, and ISO 27001/02,
• Experienced with supporting client audits.
• Demonstrated understanding of Cybersecurity Maturity Model Certification.
• Experienced with orchestrating, tracking and monitoring end-to-end programs.
• Demonstrated understanding of Cybersecurity operations, risk management and governance framework.
• Experienced in reporting on program status and achievements, and goals and objectives.
• Understands technology, infrastructure and cybersecurity and can correlate them as it pertains to security policies and standards.
• Strategic thinking, problem solving, and ability to render solutions.
• Effective communication skills:  Ability to communicate, inspire, delegate effectively in a fast-paced environment.
• Highly Collaborative:  Successfully collaborates vertically and horizontally, to provide guidance and support to management and staff on cyber compliance matters.
• Knowledge of applicable laws and regulations.
• Skilled in risk analysis, issue tracking, security controls.
• Understanding of Operating systems.

Education & Experience Recommended
• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 7-10 years of work experience, preferably in cyber & IT security, or a related field.

Preferred Certifications
• At least one major industry certification.

• Any relevant certification in ISO.

Cross-Org Skills

• Customer Centricity
• Ability to adapt quickly to changes

• Effective Communication
• Results Orientation
• High Learning Agility
• Digital Fluency
• Ability to Prioritize

Impact & Scope
•Impacts function and leads and/or provides expertise to functional project teams and may participate in cross-functional initiatives.

Complexity
Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.

Disclaimer
This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

Job -

Information Technology

Schedule -

Full time

Shift -

No shift premium (United States of America)

Travel -

Relocation -

Equal Opportunity Employer (EEO) - 

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement