Inside this Business Group
Job Description: The IT External Risk Management ERM team offers a position responsible for vendor supplier security reviews.Primary responsibilities will include, but not be limited to: -Lead or contribute to Supplier security risk reviews which determine the appropriate Provider, Tenant and Enterprise security controls. -Evaluate Suppliers security controls and determine effectiveness in protecting Intel's data. -Participate in the planning and direction of Supplier security risk assessments to examine and verify security capabilities, behaviors, and controls for authentication, authorization, integrity, availability, assurance, audit, and disposal of Intel's information assets to determine exposure and compliance levels. -Provide proactive and professional communications to Intel business partners and management. -Responsible for the development and/or enforcement of corporate and business group information security policies to protect Intel's information assets and intellectual property. -Determine sources of requirements and standards for compliance. -Recommends and drives additional security controls to meet current and future needs. -May be engaged in other information security or risk management projects. -Requires thorough knowledge of security practices, procedures, and capabilities in order to perform non-repetitive, analytical work.-Assess, monitor and audit Intel ODC controls.You'll be expected to analyze risks and test controls associated with information technology and its use at Intel prioritize these risks, determine their impact vs. business opportunity, and identify alternatives for their mitigation. Influence and work with IT teams, stakeholders and suppliers to pro-actively intercept these risks and drive closure to acceptable levels of risk for the company. The ideal candidate should exhibit the following behavioral traits: - Analytical thinking.- Threat, vulnerability assessment.- Security policies.- Knowledge or experience of security assessments a bonus.- Problem-solving skills - Ability to multitask - Excellent written and verbal communication skills at all levels of the organization - Strong customer orientation while ensuring information risk management processes are followed. Drive the development of security capabilities within the security industry and Intel. Provides solutions to a wide range of difficult problems. CISSP or CISM or CISA required. CCSP a bonus. Knowledge and experience of vendor assessments, industry certifications such as ISO27001 an advantage.
Intel's Information Technology Group (IT) designs, deploys and supports the information technology architecture and hardware/software applications for Intel. This includes the LAN, WAN, telephony, data centers, client PCs, backup and restore, and enterprise applications. IT is also responsible for e-Commerce development, data hosting and delivery of Web content and services.