Be aware of scams on social media involving phony job postings. Learn more


Information Security Sr. Manager - Governance and Risk Management

Location: San Diego, CA, USA

Notice

This position is no longer open.

Requisition Number: 203893

External Description:

If you want to be a key part of establishing and growing a large, global cloud consulting organization, then this opportunity may be for you. Teradata Corporation is a leader in delivering high power analytics to companies driving improved results and transformational capabilities. Our corporate security team is at the heart of ensuring we deliver our analytics solutions to our customer’s analytic ecosystem wherever they deploy our technology (on premises, managed cloud or public cloud). We are actively driving toward next generation service capabilities building on our already best in class services and consultants.  We are helping customers determine how to maximize the opportunities enabled by cloud and how to successfully navigate towards the cloud mandates that many of our large, global customers have in place.  

The member of the Information Security Risk and Governance team will leverage broad technical knowledge of the security controls implemented at Teradata, lead the third-party risk assessment program and provide security awareness and training for all associates. This is a global role with responsibility for responding to information security needs across the entire Teradata corporation.

 Third Party Risk Management’s key objectives are

  • Maintain the firm-wide Third-Party Risk Management (TPRM) program 
  • Implement firm-wide TPRM strategy, processes and tools 
  • Execute due diligence and ongoing monitoring
  • Maintain compliance with regulatory requirements and contractual agreements
  • Implement clear, consistent information and reporting to identify, measure, monitor and manage firm-wide risks

The ideal candidate will have experience and proven track record of managing third party risk management programs, Information Security learning and development, and communication in global organizations.  This position will be working closely with the business units, to advise on risk, consult on compliance requirements, build security awareness, and enforce policies.  Strong interpersonal skills are required to meet with senior leaders and explain the risks and alternatives to meet risk goals. establishing and manage organizational operating and executive level metrics and assist in creating the monthly materials for leadership review.

Key Areas of Responsibility 

Direct hands-on expertise in the following areas of information security:

Third Party Risk Management

  • Supporting continuous improvement to the Third-Party Risk Management program as it evolves to meet changing organizational and regulatory needs; partnering with Procurement to ensure that the change is communicated and embedded across the organization
  • Work directly with internal business partners and Procurement to assist in the identification of potential security risks with third party vendors of products, services, and supply chain management
  • Counsel and guide business partners in identifying risks and potential risk mitigation alternatives commensurate with the risk identified and consistent with risk appetite
  • Work directly with new and existing third-party vendors to assess risk controls to ensure data is adequately safeguarded
  • Provide training and oversight to risk management analysts performing third party risk assessments on new and existing third parties on an enterprise-wide basis
  • Preparation of detailed and summary reports of assessments, remediation plans, including customized reports, as needed
  • Advising on the information security and compliance risks and requirements of our suppliers to both technical and non-technical stakeholders
  • Develop and manage policy deviation process and approvals

 Information Security Awareness & Training

  • Managing the training strategy, including requirements gathering from relevant stakeholders, designing and development of curriculum and delivery channels
  • Design, development and maintenance of training materials, including presentations, guides, FAQs and online resources to meet security and regulatory compliance needs. This will also include specialized training for specific roles within the Teradata ecosystem
  • Develop and Manage internal and external web content for Information Security resources including policies, standards, training & awareness content, forms, etc.

 Security Metrics

  • Work with teams across Teradata security practices to develop operational, executive and board level metrics

Qualifications

  •  Bachelor’s Degree required; information security and risk management certifications desirable
  • 10 – 15 years’ experience with internal security and compliance
  • Experience achieving ISO 27001, SOC 2 Type 2 compliance
  • Drafting/enforcing internal security policies
  • Experience in IT audit, information security, and compliance
  • Comprehensive knowledge of various risk and security frameworks
  • Comprehensive knowledge of SOX, ISO 27001, HIPAA, PCI, GDPR and global data protection and privacy laws
  • A general understanding of cloud security challenges and controls
  • A good understanding of technologies and controls including hosts, databases, networking, and applications
  • Experience presenting and communicating to Executive Management
  • Ability to effectively work and collaborate with technical and non-technical resources
  • Strong presentation and communication skills
  • Strong organizational skills

 

CountryEEOText_Description: Teradata invites all identities and backgrounds in the workplace. We work with deliberation and intent to ensure we are cultivating collaboration and inclusivity across our global organization. ​ We are proud to be an equal opportunity and affirmative action employer. We do not discriminate based upon race, color, ancestry, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related conditions), national origin, sexual orientation, age, citizenship, marital status, disability, medical condition, genetic information, gender identity or expression, military and veteran status, or any other legally protected status.

City: San Diego

State: California

Community / Marketing Title: Information Security Sr. Manager - Governance and Risk Management

Job Category: IT

Company Profile:

Our Company

At Teradata, we believe that people thrive when empowered with better information. That’s why we built the most complete cloud analytics and data platform for AI. By delivering harmonized data, trusted AI, and faster innovation, we uplift and empower our customers—and our customers’ customers—to make better, more confident decisions. The world’s top companies across every major industry trust Teradata to improve business performance, enrich customer experiences, and fully integrate data across the enterprise.

LinkedIn Remote:

Location_formattedLocationLong: San Diego, California US

.

© 2023, Teradata. All rights reserved. | Privacy | Terms of Use | Fraud Alert | Tracking Consent | Teradata is an Equal Opportunity Employer | www.teradata.com