Dallas, Texas
12 hours ago
Lead – Cyber / Third Party Risk Management

Job Description:

As AT&T Technology Risk Lead – Cyber / Third Party Risk Management, you will be responsible for providing independent oversight of the company’s enterprise-wide Cybersecurity and TPRM control functions in accordance with the Technology Risk Program.  Increasing levels of risk and regulatory requirements demand additional risk management rigor, and we must implement highly resilient, reliable, and effective solutions that meet and in some cases exceed performance standards found in other information rich industries.  You will provide leadership and support for Technology Risk initiatives across the business and advocate for best practices, while incorporating an independent oversight lens.  You will utilize risk-based management to integrate information and technology risk processes into the way AT&T operates.

Reporting to AT&T’s AVP of Technology Risk – Cyber & Third Party Risk Management, you will be responsible for identifying, assessing, responding to, and monitoring risks pertaining to information security and use of technology third parties. You will ensure that regulatory / risk policies and standards and their impact on business operations are understood and addressed consistently across AT&T, and that technology risks of new and existing technologies are assessed, monitored, and remediated as necessary. You will help to provide coverage for regulatory issues with our global technology partners and assist with regulatory exams, requests, and meetings.

Responsibilities:

Drive efforts around Technology Risk Management for the Cyber / Third Party risk types

Partner with and advise key stakeholders across technology, business, and risk partners to identify, assess, respond, and monitor key risks in order to keep AT&T and our customers safe and resilient

Provide thought leadership on, as well as, manage the development of Technology Risk policies, processes, frameworks and oversee the integration and implementation of proposed solutions

Guide IT Standards and Policies to be fit for purpose and are appropriate from a regulatory, risk and compliance perspective

Provide expertise to business units around emerging technology risk topics

Support Tech Risk teams responsible for risk monitoring, periodic controls testing, evidence collection, remediation and audit readiness efforts

Support efforts to improve the Technology Risk Program’s onboarding capabilities, with the goal of facilitating and streamlining Program adoption, and simplifying the process for business units to understand and comply with Program requirements/controls

Support with escalation of high risk observations to executive leadership

Qualifications:

5-8 years of work experience in technology, operational risk management, or a related discipline at a global company

Significant (5 years) experience in multiple industry risk, control and governance disciplines (e.g. Audit, Information Security, and Regulatory Compliance)

Strong experience in:

Information security risk and cybersecurity control capabilities in an ownership or oversight capacity

Third party risk and technology third party management control capabilities within technology organizations or in an oversight capacity

Experience designing, implementing, and sustaining programs that effectively manage risk throughout the risk management lifecycle; including:

Strategic technology risk advisory

Risk identification, including emerging risks

Maturity and risk assessment, scenario analysis

Risk response, mainly issue remediation

Risk monitoring

Policy and committee governance

Demonstrated success in remediating self-identified, internal / external audit, and regulatory / compliance issues

In-depth understanding of information technology and best practices across the industry as well as project management principles

Extensive knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT, NIST) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements

Ability to weigh business needs against risk concerns and effectively articulate issues to different audiences

Strong expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization

Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners.

Ability to solve very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company

Strong client relationship management experience, communication, and influencing skills

Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff

Desired Qualification

BS required and advanced degree preferred

Our Lead – Cyber / Third Party Risk Management earns between $143,800.00-$215,800.00 USD Annual, not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

Medical/Dental/Vision coverage

401(k) plan

Tuition reimbursement program

Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)

Paid Parental Leave

Paid Caregiver Leave

Additional sick leave beyond what state and local law require may be available but is unprotected

Adoption Reimbursement

Disability Benefits (short term and long term)

Life and Accidental Death Insurance

Supplemental benefit programs: critical illness/accident hospital indemnity/group legal

Employee Assistance Programs (EAP)

Extensive employee wellness programs

Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

 AT&T is leading the way to the future – for customers, businesses, and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined. Ready to #transformdigital with us?

Apply now!

Weekly Hours:

40

Time Type:

Regular

Location:

Bedminster, New Jersey

Salary Range:

$128,400.00 - $215,800.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.

Job ID R-49150-3 Date posted 12/20/2024
Confirm your E-mail: Send Email