Gannett | USA TODAY NETWORK · 2 hours ago
Security Risk Management Director
Maximize your interview chances
Insider Connection @Gannett | USA TODAY NETWORK
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Lead the development and implementation of security risk management strategies and frameworks.
Oversee the management of the cyber risk register, ensuring all identified risks are documented, assessed, and managed effectively.
Conduct regular risk assessments to identify vulnerabilities or gaps in controls, document findings, and recommend treatment plans.
Participate in the vendor review to identify and manage third-party and supply chain risks.
Manage security questionnaire requests from clients and coordinate with Privacy, Legal, and Compliance teams for accuracy of information.
Collaborate with cross-functional teams to integrate security risk management practices into business processes, fostering a culture of security awareness and continuous improvement.
Develop and maintain security policies, standards, and procedures.
Chair the Security Risk Council to review architecture and implementation plans, processes, and dataflows to ensure risks are mitigated appropriately.
Mature and streamline the security risk assessment processes related to new projects, technology implementation or changes, new vendor integrations, implementation plans, and architecture reviews. This includes security reviews of new internally developed applications.
Regularly report on the status of cyber risks and escalate critical issues to senior management.
Ensure compliance with relevant regulations and standards, including NIST, SOX, PCI, SOC2, and HIPAA.
Stay abreast of the latest security trends, threats, and technology solutions to proactively address potential risks.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor’s degree in computer science, Information Security, or a related field preferred; advanced degree and industry certification highly preferred.
Minimum of 10 years of experience in security risk management, with at least 5 years in a leadership role.
Proven experience with OneTrust technology and its applications in privacy and security risk management.
Strong knowledge of cybersecurity frameworks, standards, and best practices (e.g., NIST, ISO 27001).
Excellent analytical, problem-solving, and decision-making skills.
Strong communication and interpersonal skills, with the ability to effectively convey complex security concepts to non-technical stakeholders.
Relevant certifications such as CISSP, CISM, or CRISC are required.
Company
Gannett | USA TODAY NETWORK
Gannett Co., Inc.
H1B Sponsorship
Gannett | USA TODAY NETWORK has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2022 (4)
2021 (4)
2020 (2)
Funding
Current Stage
Public CompanyTotal Funding
$675MKey Investors
Apollo
2024-08-26Post Ipo Debt· $675M
2019-08-06Acquired· undefined
1978-01-13IPO· undefined
Leadership Team
Recent News
2024-11-26
The Straits Times
2024-11-20
Company data provided by crunchbase