Senior Security Engineer developing and enhancing security infrastructure for Bank Frick, a pioneer in blockchain banking. Responsible for managing security processes and collaborating with IT teams.
About the role
- Cybersecurity GRC Program Manager at EnerSys, leading cybersecurity compliance efforts. Collaborating with internal teams and auditors in a hybrid work environment.
Responsibilities
- Provide GRC guidance and interpretation of rules, regulations, risks, and best practices.
- Execute cybersecurity risk assessment and control attestation processes, including ongoing and annual assessments.
- Collaborate with Internal and External Auditors on security assessments and audits.
- Review control effectiveness evidence, collect, review, and upload evidence for compliance purposes.
- Document emerging and residual risk, assist in risk analysis and evaluation, and identify potential areas of risk.
- Engage with internal teams and consultants to ensure adherence to processes and troubleshoot, identify, analyze, and mitigate risks in existing processes, policies, and procedures.
- Lead the information security compliance program, ensuring compliance with regulations, and develop and implement effective policies and practices to secure sensitive data.
- Communicate operational metrics and trend analysis for IT Leadership, and collaborate with cross-functional teams to align GRC efforts with business objectives.
- Stay up to date on regulatory developments and industry trends.
- Expected to travel up to 10% each year.
Requirements
- A degree in a technical field (Computer Science, Information Systems, or Cybersecurity) is preferred but not required.
- 5+ years of experience in Information Technology and client/customer management.
- Strong understanding of cybersecurity principles, risk management frameworks, and compliance standards (e.g., CMMC, EU CRA, NIS2, TISAX, Essential Eight, IEC 62443, NIST CSF&RMF, ISO 27001).
- Experience working with internal and external auditors.
- Excellent communication and interpersonal skills: Oral, written and listening.
- Strong analytical and problem-solving abilities.
- Ability to work independently and collaboratively in a cross-functional environment.
- Relevant IT certification (e.g., CISSP, CISM, CISA, CRISC) other relevant certifications are preferred.
Benefits
- Hybrid Work Schedule Monday & Friday: Work from home
- Tuesday, Wednesday, Thursday: Onsite at the Reading, PA office
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Werkstudent Cyber Security bei Wavestone, Unterstützung im IT - Consulting und Entwicklung im Bereich Cyber - Sicherheit. Analyse von Trends und aktive Teilnahme an Teamaktivitäten.
Project Manager for Security Technology managing complex security projects in MENA region. Involving internal teams and external integrators ensuring project success and client satisfaction.
Cyber Security Manager at British American Tobacco strengthening cyber resilience across Western Europe. Responsible for managing security initiatives and collaborating with regional teams.
Stagiaire responsable de l’accompagnement à la mise en place d’un système SSE pour un bureau d’études en ingénierie. Impliqué dans la structuration, suivi et déploiement de systèmes SSE.
Engineering Intern involved in real work and active projects at Babcock Australasia. Collaborating with experienced professionals to gain real - life experience in a supportive environment.
Graduate Cyber Technician contributing to Babcock Australasia's Defence Industry initiative. Join the 2027 Graduate Program and engage in personal and professional development.
Senior Security Engineer establishing and maintaining cybersecurity measures for a financial services company. Responsible for leading security event responses, documentation of policies, and training.
Senior Corporate Security Investigator at Duke Energy conducting complex investigations in support of Ethics, HR, Legal, Nuclear, and Enterprise Security with field mobility.
AI Enterprise Security Architect focusing on AI Security architectural standards and integrating security measures into AI development lifecycle. Leading a global team in securing AI systems.