Job Description

Cybersecurity Risk and Compliance Engineer

This role has been designated as \xe2\x80\x98Hybrid\xe2\x80\x99 with an expectation that you will work on average 2-3 days per week from an HPE office.

Who We Are:

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today\xe2\x80\x99s complex world. Our culture thrives on finding new and better ways to accelerate what\xe2\x80\x99s next. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE.

:

Who We Are:

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today\xe2\x80\x99s complex world. Our culture thrives on finding new and better ways to accelerate what\xe2\x80\x99s next. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE.

Global Operations prioritizes putting customers and partners first by developing the workforce of the future. This involves strategic, inclusive, and collaborative working culture. At our core, we strive to uphold HPE\xe2\x80\x99s values \xe2\x80\x93 to partner, innovate and act \xe2\x80\x93 we are an organization that plan, source, and provide quality customer and partner experiences. Join us and redefine what\xe2\x80\x99s next for you.

What you\xe2\x80\x99ll do:

Job Family Definition:

Identifies, tracks, monitors, and manages cybersecurity risks within our supply chain. Evaluates and guides vendors and supply chain teams in the development and implementation of controls to address systems vulnerabilities.. Researches threat intelligence, vulnerabilities, campaigns and indicators of compromise. Define cybersecurity requirements and performs annual vendor audits to assess and ensure controls are in place.

Management Level Definition:

Applies developed subject matter knowledge to solve common and complex business issues and recommends appropriate alternatives. Works on problems of diverse complexity and scope. May act as a team or project leader providing direction to team activities and facilitates information validation and team decision making process. Exercises independent judgment to identify and select a solution. Ability to handle most unique situations. May seek advice in order to make decisions on complex business issues.

Responsibilities:

• Manages and proactively monitors supply chain cybersecurity system issues and threats, runs complex analyses on security incidents and threats, and uses in-depth research to inform company\'s resolution process.

• Develop cybersecurity audit scopes, content with accuracy and timeliness.
• Coordinates and perform cybersecurity audit activities, assess controls in place, document and communicate findings.
• Evaluate risks and controls in place to determine priorities and provide recommendations on mitigation strategies.
• Ensure compliance with company cybersecurity standards, policies and government regulations
• Create detailed cybersecurity reports with findings and gaps. Monitor actions to address findings until closure.
• Owns resolution of client and company security issues related to supply chain security incidents and threats and guides others in the resolution process when necessary.
• Combines industry expertise with a thorough understanding of information and security technology to direct vendor design of software patches.
• Recommends and coordinates the development, enhancement, organization, and maintenance of a client\'s or company\'s security solutions, including research and security system analysis.
• Evaluates internal systems, define or update supply chain cybersecurity standards, policies and processes.
• Developing and tracking audit related Plan & Milestones and associated performance metrics

What you need to bring:

Education and Experience Required:

• Bachelors degree required, preferably in computer science, engineering or related area of study
• Typically 4+ years of relevant experience
• Certifications: Preferred CISA or CISSP or other cybersecurity and risk related certification

Knowledge and Skills:

• \xe2\x80\xa2Ease to communicate at all levels, including management level presentations and summaries.
• Advanced Cyber and IT security knowledge
• Advanced understanding of Cyber and IT security risks, threats and prevention measures
• Understanding of SQL and relevant scripting languages
• Advanced security system analysis skills
• Advanced understanding of security standards and best practices
• Advanced risk assessment and management skills
• Advanced understanding of networking and network security
• Advanced understanding of network monitoring and protocols
• Knowledge of relevant .Net development, programming and scripting languages
• Advance experience in writing technical reports that analyze and interpret results.
• Understanding of relevant industry security standards and protocols including DFARS, NIST, ISO.
• Travel required.

What we can offer you:

A competitive salary and extensive social benefits

Diverse and dynamic work environment

Work-life balance and support for career development

An amazing life inside the element!

Want to know more about how you can make your mark with us?

Then let\xe2\x80\x99s stay connected!

#india #operations

HPE is an Equal Employment Opportunity/Veterans/Disabled/LGBT and Affirmative Action employer. We are committed to diversity and building a team that represents a variety of backgrounds, perspectives, and skills. Our goal is to be one global diverse team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together.

Additional Skills: Accountability, Accountability, Action Planning, Active Learning, Active Listening, Agile Methodology, Bias, Business, Coaching, Creativity, Critical Thinking, Cybersecurity, Data Analysis Management, Data Collection Management, Data Controls, Design Thinking, Development Methodologies, Empathy, Follow-Through, Growth Mindset, Implementation Methodologies, Infrastructure Design, Intellectual Curiosity, Long Term Planning, Managing Ambiguity {+ 4 more}

What We Can Offer You:

Health & Wellbeing

We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.

Personal & Professional Development

We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have \xe2\x80\x94 whether you want to become a knowledge expert in your field or apply your skills to another division.

Diversity, Inclusion & Belonging

We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good.

Let\'s Stay Connected:

Follow on Instagram to see the latest on people, culture and tech at HPE.

Job: Information Technology

Job Level: Specialist

HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT and Affirmative Action employer. We are committed to diversity and building a team that represents a variety of backgrounds, perspectives, and skills. We do not discriminate and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global diverse team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: .

Hewlett Packard Enterprise is EEO F/M/Protected Veteran/ Individual with Disabilities.

HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

Hewlett Packard Enterprise