Position Purpose: Protecting what matters most to our associates and consumers by securing our sensitive data and critical assets from current and emerging threats. At The Home Depot, Cybersecurity consists of Architecture, Governance, Identity & Access Management, Internal Threat Operations, Issue and Compliance Management, Risk Assessment/Advisory, Security Consulting, Security Operations, Service Optimization and Strategic Planning. Sr. Manager of Risk and Compliance is responsible for THD’s IT Risk Framework to identify, evaluate, assess, report on, and respond to technology risks. You will oversee annual and targeted IT Risk assessments, maintain a risk register, and develop materials to articulate risk to our leaders. You will manage third party risk management processes and our GRC technology. You will work closely with functional and technical teams to articulate and remediate risks. In addition, you will focus on risk based outcomes, thinking through, documenting, and communicating value propositions and metrics for success. Key Responsibilities: 100% Deliver Execution, Plans & Aligns, Develop Others – Collaborate cross functionally to reduce vulnerabilities, risk and incident management; Drive cross-functional alignment; Asses, develop, implement and maintain strategies to assess and resolve security risk across the enterprise; Provide leadership, mentoring and coaching to direct reports and other leaders. Direct Manager/Direct Reports: This position typically reports to Director or Sr. Director This position has 6-10 Direct Reports Travel Requirements: Typically requires overnight travel less than 10% of the time. Physical Requirements: Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles. Working Conditions: Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable. Minimum Qualifications: Must be eighteen years of age or older. Must be legally permitted to work in the United States. Preferred Qualifications: 4+ years of previous leadership experience. 5+ years of experience driving risk management across technology and cybersecurity environments. Can demonstrate extensive knowledge across the Cybersecurity Governance, Risk and Compliance space. Experienced engaging with and influencing multiple stakeholders. Ability to build and report themes through data driven models. Strong analytical and problem-solving abilities with a keen attention to detail. Knowledge in industry frameworks and standards, such as NIST, COBIT, ISO, MITRE, PCI, etc. Certified in at least one or more of the following: CISSP, CIPP, CISA, CISM, CRM, CRMP, PRM, CRISC, etc. Minimum Education: The knowledge, skills and abilities typically acquired through the completion of a bachelor’s degree program or equivalent degree in a field of study related to the job. Preferred Education: No additional education Minimum Years of Work Experience: 8 Preferred Years of Work Experience: No additional years of experience Minimum Leadership Experience: None Preferred Leadership Experience: None Certifications: None Competencies: Decision Quality Ensures Accountability Plans and Aligns Develops Talent The application window is anticipated to be closed on May 30, 2024 See more benefits: livetheorangelife.com We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. – $190,000.00 – $240,000.00
ISO standards Coaching Incident management Analytical skills standards Problem-solving CRM Attention to details Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) pci Bachelor’s Degree Mentoring risk management COBIT Strategic planning Leadership Architecture