Skills

Risk Management Monitoring Organization Software Development Process Improvement Strategic Planning

Job Specifications

Position Summary...

What you'll do...As the Business Information Security Partner (BISP), your core responsibility will be to enhance the delivery of secure technology to our customers. This role, reporting to the Information Security Partners organization, will act as the key bridge between organizations and strategic partner to predict future needs of an aligned line of business and accelerate secure delivery.

About Team:

At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus is on mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within our team

What you'll do:

Key leader for all things information security within a core technology team.
Establish and embed security into engineering using automation and scalable security practices throughout the software development lifecycle.
Partner and collaborate across other operations leaders in educating and initiating actions to mature the security posture for the teams
Both determine where the opportunities exist for the technology teams, and then further define and roadmap the maturity journey to raise the security posture expectation.
Understand key business goals to reframe risk discussions and resulting decisions in business terms
Inform senior business leaders and partners and product teams on the long run risk implications of product options using both data and expert experience to guide decision making
Predict demand increases both in existing operations and for new yet to be offered services from Information Security
Keep awareness and aid InfoSec teams to maintain priority for all work for your supported area to be aligned to the business needs.
Translate business needs into product requirements for feeding backlogs of horizontal offerings by Information Security.
Serve as a primary arbiter for risk management between business needs and security risk, aligned with quantitative risk measurement standards.
Act as the primary escalation point for incidents involving your supported area and Information Security, including attending war rooms when notified and follow up on problems involving Information Security services.
Participate in industry councils or working groups to influence security best practices within the retail industry.
Constructively engage teams, including business teams, to resolve cybersecurity issues
Establish risk ownership and accountability
Monitor open security risk issues to ensure strategic planning identifies and avoids such risks in the future.

What you'll bring:

Manages the execution of security initiatives by prioritizing critical issues for root-cause analysis; ensuring resolution of critical issues; monitoring progress versus plan; escalating complex or difficult issues; conducting business and technical design sessions; utilizing scope-change orders to track changes to the project; tracking expenditures and budgets; providing informational presentations; managing stakeholder expectations; holding self and project team accountable for project delivery; and developing performance reports.
Monitors, analyzes, and remediates information technology (IT) security risks and vulnerabilities by adhering to defined operating procedures; reviewing metrics to identify outliers, inefficiencies, and non-standard actions associated with operational processes and reporting the findings; identifying improvement opportunities and providing feedback to senior team members and management; and participating in meetings for any initiatives or tasks that will alter current processes.
Maintains vendor relations by preparing and executing request for proposals (RFPs); facilitating the vendor selection process; reviewing statements of work; ensuring compliance with vendor contracts; and reporting on vendor contract execution.
Oversees multiple compliance efforts by monitoring the implementation of specific information security controls; ensuring expertise with regulatory concepts (for example, International Organization for Standardization (ISO), Sarbanes-Oxley Act (SOX), Payment Card industry Data Security Standard (PCI), Health Insurance Portability and Accountability Act (HIPAA)); managing multiple compliance assessments and remediation processes; identifying security compliance assessment and remediation process improvement; defining and/or implementing solutions to assess compliance and reduce risk; coordinating and communicating enterprise compliance assessments and remediation processes; presenting results and analysis of assessment and remediation activity relevant to missing strategic goals to senior and executive management; and defining governance reports, practices, goals, and strategic efforts to enforce mandate

About the Company

Sixty years ago, Sam Walton started a single mom-and-pop shop and transformed it into the world’s biggest retailer. Since those founding days, one thing has remained consistent: our commitment to helping our customers save money so they can live better. Today, we’re reinventing the shopping experience and our associates are at the heart of it. When you join our Walmart family of brands, you’ll play a crucial role in shaping the future of retail, improving millions of lives around the world. We are ecstatic to have been named... Know more