Key member of the newly formed Information Security Risk Management program. Participates in the development of risk management and security maturity assessment process. Collects, tracks and presents new and existing security risk areas to executive leadership for treatment. Recommends focus areas and improvement opportunities for inclusion in the Information Security strategy for Walgreens.
Job Responsibilities:
- Assesses and evaluates systems to identify weaknesses and assess risk; performs vulnerability testing.
- Implements new or upgraded security measures or controls, and documents system or process changes.
- Reviews security violation reports or logs, investigates possible security exceptions and coordinates with internal teams or external agencies as needed, including managed service providers.
- Develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems. May advise on security controls for projects.
- May advise on penetration testing and vulnerability assessments of applications, operating systems and/or networks. May conduct complex cleanup of legacy environments
- Researches and evaluates cybersecurity threats and performs root cause analysis.
- Assists in the creation and implementation of security solutions, which may include conducting vendor assessments to ensure vendor is complying with security contract language and WBA security requirements.
- May conduct contract reviews for appropriate security language prior to a project/WBA signing
- May conduct remediation management or governance and/or escalations on vendors or operations issues requiring a solution
- May perform as “Level 3” support in the event Managed Service provider is unable to resolve an issue.
- May review projects to ensure alignment with Security Requirements and/or represent info security on projects, when necessary. May conduct oversight of a particular area of Managed Service, when necessary
- Provides information to management as required, including Producing and delivering various dashboard, metrics and other reports, as required
Basic Qualifications :
- Bachelor's degree and at least 2 years of experience in IT Security OR High School/ GED and at least 4 years of experience in IT Security
- Experience working in Security Engineering, Threat Response, Security Operations, IT Operations, IT Compliance and/or IT Governance
- Willing to travel up to/at least 10% of the time for business purposes (within state and out of state).
Preferred Qualifications :
- Bachelor's degree in IT, IS, Mathematics
- CISSP or CISA Certification
- CRISC Cert
We will consider employment of qualified applicants with arrest and conviction records.
An Equal Opportunity Employer, including disability/veterans.
The actual compensation that you will be offered will depend on a variety of factors including geography, skills and abilities, education, experience and other relevant factors. This role will remain open until filled. To review benefits, please click here jobs.walgreens.com/benefits. If you are applying on a job board or unable to click on the link, please copy and paste this URL into your browser jobs.walgreens.com/benefits
