Cybersecurity Governance Assessor Specialist 4 Hewlett Packard

About Hewlett Packard

Job Description

As a Senior Cybersecurity Risk Assessor at HP Cybersecurity, you play a crucial role in ensuring the security of the HP enterprise in the face of increasing cybersecurity threats. Your responsibilities include end-to-end cybersecurity risk management, which involves identifying, analyzing, and evaluating risks, as well as identifying remediation requirements and supporting remediation efforts. You will utilize defined risk assessment processes and risk management methodologies to achieve these objectives. In this role, you will contribute to continuous process improvements to enhance HP's cybersecurity Governance, Risk, and Compliance (GRC) capabilities. You will control data flows, analyze cybersecurity-related information, and reflect trends in reporting tools to facilitate data-driven decisions that keep HP secure. Collaboration across teams to assess, consult, and implement data and automation solutions is also an essential part of your responsibilities. As a Cybersecurity Risk Assessor, you will scope, manage, and perform cybersecurity risk and compliance assessments, handle complex Third-Party Risk Assessments (TPRAs), and maintain the risk register for all assessed assets using eGRC/IRM solutions. You will provide risk mitigation and remediation guidance to stakeholders, support internal and external audits, and contribute to the continuous improvement of GRC practices. Additionally, you will stay abreast of industry cybersecurity threats, best practices, regulatory changes, and other factors impacting HP's security. The ideal candidate for this role at HP possesses a Bachelor's degree in a relevant field or equivalent experience, along with at least 10 years of experience in conducting risk and compliance assessments. A Technical Cyber Security Certification from a recognized body is preferred, and solid knowledge of industry frameworks and standards like ISO27001/27002/27005, NIST CSF, NIST 800-53, SOC2, PCI-DSS, and SIG is required. You should also have expertise in common GRC processes and demonstrate results-driven, analytical, and proactive problem-solving skills. The Cybersecurity Governance, Risk Management, and Compliance team at HP are dedicated to protecting the HP Enterprise against cyber threats. This diverse group of cybersecurity professionals collaborates with various disciplines within Cybersecurity and business stakeholders to effectively manage cybersecurity risks to the business. If you are passionate about cybersecurity, possess strong analytical skills, excel in communication, and thrive in a results-oriented environment, HP offers a challenging and rewarding opportunity to make a meaningful difference in the world of technology. Join us in our mission to reimagine and reinvent what's possible and create a better future for everyone, everywhere. Let's talk about how you can be a part of our team.,