LHH is looking for a Sr. Information Security Engineer - GRC to aid an established and rapidly growing client of ours in the Computer Hardware space.
This person will be responsible for developing, implementing, and overseeing the organization's comprehensive cybersecurity GRC program.
In this capacity you will act as a strategic partner to senior management, ensuring alignment between cybersecurity initiatives and overall business objectives.
In this capacity you will create and maintain processes, procedures and documentation, perform IT security reviews, and perform vulnerability management and risk assessments to proactively secure the organization.
Responsibilities
Develop and maintain the organization's cyber governance framework, risk management strategy, and compliance roadmap, ensuring alignment with industry best practices and regulatory requirements (e.
g., NIST, ISO, PCI DSS).
- Establish and enforce clear and concise cybersecurity policies, standards, and procedures, providing ongoing guidance and support to stakeholders across the organization.
- Lead the identification, assessment, and prioritization of cybersecurity risks, recommending and implementing appropriate mitigation strategies and action plans.
- Conduct or oversee regular security audits and assessments to evaluate the effectiveness of cybersecurity controls and identify areas for improvement.
- Monitor and report on the performance of the cybersecurity GRC program, including key metrics and compliance posture.
- Manage and maintain all related documentation, including risk registers, policy documents, and audit reports.
- Foster a culture of cybersecurity awareness and education within the organization through training programs and initiatives.
- Develop training and awareness programs to ensure staff compliance with security policies and procedures.
Experience
- 8+ years experience in information security with a focus on GRC.
- Certifications such as CISSP, CISM, CRISC, or CISA are highly preferred.
- Experience developing and implementing cybersecurity policies, standards, and procedures.
- Comfortable translating complex security regulations into actionable plans for technical and non-technical teams.
- Strong understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001 / 27002) and relevant industry regulations.
- Experience in conducting security risk assessments and audits.
- Excellent communication, collaboration, and interpersonal skills.
- Proactive, results-oriented, and with a strong work ethic.
Sound like a fit? Apply today!
Sr. Security Engineer - Data Loss Prevention
Implement a service management framework to strengthen and sustain the cyber security operations across Enterprise Information Security technology. Perform as a security engineer to manage information protection solutions and provide Level 1 and 2 support. At least 6 years of information security ex...
Sr. Staff IT Cloud Systems Engineer
Staff IT Cloud Systems Engineer. Participate in projects and help engineer new systems. Implement least privilege access controls and monitor security events. Collaborate with security teams to address vulnerabilities and maintain compliance. ...
Sr. Information Security Analyst - Newark, NJ
You will report to the AVP, Information Security. May participate in strategic planning activities, other Information Security Projects, or other district/system priorities, including workgroups and initiatives, as requested. Assist in the development of processes and procedures for the information ...
Staff Cyber Security Engineer (Generative AI)
This Staff Cyber Security Engineer will partner with the various NBCUniversal businesses, enterprise IT, and Cyber Security organization to ensure technology is designed and deployed securely and aligned with Cyber Security and enterprise technology strategies. We are looking for a Staff Cyber Secur...
Sr Staff Power Engineer
As a Senior Staff Power Engineer, you will be responsible for power delivery design and development for rack-level solutions and testing these to meet customers’ data center requirements. Bachelor’s Degree in Electrical Engineering. ...
Staff Cyber Security Engineer (Generative AI)
This Staff Cyber Security Engineer will partner with the various NBCUniversal businesses, enterprise IT, and Cyber Security organization to ensure technology is designed and deployed securely and aligned with Cyber Security and enterprise technology strategies. We are looking for a Staff Cyber Secur...
Lead Information Systems Security Engineer
Expected to contribute to all System Security Engineering activities pertaining to CDRLs, trade studies, security requirements analysis, secure architecture development, management & compliance with security controls, design review milestones (SRR, SDR, PDR, CDR) and security test/verification a...
Sr Staff Electrical Engineer
The Sr Staff Electrical Engineer will have demonstrated technical leadership across many technologies related to the design and debugging of cloud compute server systems and PCB boards, add-on cards, front panels, and IO backplane products. This engineer will also be responsible for decision-making ...
Staff Cyber Security Engineer
The Staff Cyber Security Engineer will be responsible for conducting security and threat analysis of business and enterprise initiatives involving new or modified technology deployments; ensuring that they incorporate Information Security best practices and guidelines into system designs. This Staff...
Sr Staff Hardware Systems Development Engineer
As a Staff Hardware Development Systems Engineer, you will assume a critical role in the design and development of groundbreaking server platforms, overseeing the entire product lifecycle from concept to launch. A bachelor’s degree in electrical engineering or computer Science. ...