Lead Risk & Compliance Advisor

Cox Automotive203 days ago
Atlanta, US
Cox Automotive

About this job

Job type: Full-time
Role: System Administrator
Industry: Mobile Development, Software Development / Engineering, Web Development
Company size: 10k+ people
Company type: Private


security, cloud

Job description

The Lead Risk & Compliance Advisor will be responsible for establishing and implementing the roadmap for enterprise risk and compliance initiatives and best practices throughout the Cox Automotive organization.This position will ensure enterprise risk and compliance initiatives are understood, implemented and monitored throughout the organization. Where appropriate, the position will conduct benchmarking activities to enable security improvements. The Lead Risk & Compliance Advisor will be responsible for providing feedback and reporting to senior management on program success through defined KPIs.

A strong background and relevant experience in both the specific domains below is required–

Governance and Information Security Risk Assessments (internal and external); 
Technical risk management (Cloud security, Application and Network security, Vulnerability Management, etc.)

The candidate must be team oriented and will work closely with the other members of the Enterprise Risk & Security team. He/she will work in close partnership with managers for the consistent and prompt implementation of enterprise security initiatives. An ability to manage and respond to multiple requests for support in a fast-paced environment is essential. 

The qualified individual will also be responsible for the day-to-day risk management and compliance activities related to our control areas (Governance and Risk, Compliance, Incident Response, Disaster Recovery, Cloud Security, etc.); as well as provide reporting and support for executive leadership’s communication strategy (i.e., develop presentations, create documentation on information security practices, etc.).

Your Role:

  • Develop and maintain information security policies and standards
  • Coordinates and undertakes risk assessments of third parties, internal business units, projects and processes
  • Facilitates compliance initiatives like CCPA, GDPR, PCI and supports ongoing maintenance with applicable laws and regulations.
  • Provides technical evaluations and solutions for complex situations- partners with stakeholders by providing options for risk mitigation.
  • Coordinates resolution of assessment findings & remediation.
  • Apply GRC principles and frameworks for risk reduction and mitigations.
  • Produces and enhances risk and assessment compliance reporting.
  • Supports incoming client requests for information and evidence of security controls.


Required Experience and Qualifications

  • BA/BS Degree, preferably formal studies in Computer Science or Information Systems or equivalent
  • 6-9 years’ experience in IT Security, Risk and/or Compliance or equivalent
  • Experience of web-based applications, infrastructure, and architecture
  • Strong MS office skills with proficiency in Excel
  • Passion to work in a fast-paced and dynamic environment
  • Ability to work in a team and independently to fix issues with little or no supervision
  • Excellent organizational, project management and follow-up skills
  • Ability to build effective working relationships at all levels of the organization
  • Excellent communication skills
  • One or more of CISSP, CISA, CISM, or other security certification(s).  


Atlanta, US

By clicking apply you will leave devsnap. Please be careful. You should never have to pay to apply.
A new version is available REFRESH