Associate Manager, Cyber Security GRC

San Jose, California, United States

Applications have closed

Samsung Semiconductor, Inc.

Samsung provides innovative semiconductor solutions, including DRAM, SSD, processors, image sensors with a wide-ranging portfolio of trending technologies.

View company page

Advancing the World’s Technology Together
Our technology solutions power the tools you use every day--including smartphones, electric vehicles, hyperscale data centers, IoT devices, and so much more. Here, you’ll have an opportunity to be part of a global leader whose innovative designs are pushing the boundaries of what’s possible and powering the future. 

We believe that innovation and growth are driven by an inclusive culture and a diverse workforce. We’re dedicated to empowering people to be their true selves. Together, we’re building a better tomorrow for our employees, customers, partners, and communities.

What You’ll Do
The Cyber Security Governance, Risk, and Compliance Associate Manager is responsible for the assessing and documenting of the SSI’s compliance and risk posture as they relate to the information assets.  The purpose of this position is to provide highly skilled technical and information security expertise for development and implementation of the information security risk management program and vendor risk management program.  Responsibility require leadership and project management expertise, as well as expertise to ensure effective system-wide security analysis; intrusion detection; standards and testing; risk assessment; awareness and education; and development of policies, standards and guidelines.

Location: Hybrid, working onsite at our Austin office 3 days per week with the flexibility to work remotely the remainder of your time 
Reports to: Director of Cyber Security (CISO)

Job ID: 41194

  • The candidate will assist with various GRC tasks including client due diligence, security awareness, internal audit remediation, security controls strategies, and third-party/vendor risk management.
  • Risk – Lead the development and implementation of the system-wide risk management function of the information security program to ensure information security risks are identified and monitored
  • Risk – Internally assess, evaluate and make recommendations to management regarding the adequacy of the security controls for the information technology systems.
  • Policy/Compliance – Lead the system-wide information security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies and regulations.
  • Policy/Compliance – Develop and implement effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation.
  • Policy/Compliance – Execute the strategy for dealing with increasing number of audits, compliance checks and external assessment processes for internal/external auditors, NIST, SOC2, FedRAMP.
  • Policy/Compliance – Documentation review; drafting of policy, procedures and standards, certification and accreditation documents
  • Familiarity with SOC2 and FedRAMP audit process is a plus.

 

What You Bring

  • Bachelor's degree in a technical field.
  • Masters level education is plus. 
  • 2+ years of experience in GRC and/or project management.
  • Professional certification is Agile/Scrum master certification.
  • Project Management certification is plus.  
  • You’re inclusive, adapting your style to the situation and diverse global norms of our people.
  • An avid learner, you approach challenges with curiosity and resilience, seeking data to help build understanding.
  • You’re collaborative, building relationships, humbly offering support and openly welcoming approaches.
  • Innovative and creative, you proactively explore new ideas and adapt quickly to change.

What We Offer
An investment in your future, is an investment in ours. That’s why we offer a diverse package of benefits centered around the wellbeing of our employees and their loved ones. In addition to competitive compensation and the usual Medical/Dental/Vision/401k, our inclusive curation of benefits empower our people to care for their whole selves.
Give Back With a charitable giving match and frequent opportunities to get involved, we take an active role in supporting the community.
Enjoy Time Away You’ll start with 4+ weeks of paid time off a year, plus holidays and sick leave, to rest and recharge.
Care for Family Whatever family means to you, we want to support you along the way—including a stipend for fertility care or adoption, medical travel support, and an errand service.
Prioritize Emotional Wellness With on-demand apps and paid therapy sessions, you’ll have support no matter where you are.
Stay Fit Eating well and being active are important parts of a healthy life. Our onsite Café and gym, plus virtual classes, make it easier.
Embrace Flexibility Benefits are best when you have the space to use them. That’s why we facilitate a flexible environment so you can find the right balance for you.

Covid-19 Policy
To help keep our employees, customers, and communities safe, we’ve developed guidelines for our teams. Currently, we encourage vaccination for all employees, and may require it depending on job functions (e.g., traveling for business, meeting with customers). While visiting our offices or attending team events, we ask employees to complete a daily health questionnaire and complete a weekly COVID test. Our COVID policies are subject to change depending on public health, regulatory and business circumstances. 

Equal Opportunity Employment Policy
Samsung Semiconductor is proud to be an equal opportunity workplace and affirmative action employer. We’re committed to fostering an inclusive environment where everyone feels welcomed and empowered to do their best work. We hire the best talent for our teams, regardless of race, religion, color, age, disability, sex, gender identity, sexual orientation, ancestry, genetic information, marital status, national origin, political affiliation, or veteran status. Our focus is on hiring teammates with humble expertise, kindness, dedication and a willingness to embrace challenges and learn together every day.

Tags: Agile Audits Compliance FedRAMP Governance Intrusion detection NIST Risk assessment Risk management Scrum Security analysis SOC 2 Strategy

Perks/benefits: 401(k) matching Career development Competitive pay Fertility benefits Fitness / gym Flex hours Flex vacation Health care Medical leave Startup environment Team events Wellness

Region: North America
Country: United States
Job stats:  8  1  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.