Cyber Security Compliance Analyst

Requirements & Summary




Company: SLB
Skills: IT - Analysis & Management
Experience: 5 + Years
Education: Bachelors/3-5 yr Degree
Location: Houston, Texas, United States





The Cyber Security Compliance Analysts will contribute to development and maintenance of our overall controls and compliance system. Ensuring documentation and evidence is updated to help SLB remain compliant with regulations and preparing for audits. Responding to Customer and 3rd Party Cyber Security Assessments will be a key responsibility of the Cyber Security Compliance Analyst. Communication across multidisciplinary teams will be required to effectively manage and respond to Cyber Security Assessments. The Cyber Security Compliance Analyst must be able to communicate effectively and act as an interpreter between different stakeholders to translate compliance requirements understandably. The Cyber Security Compliance Analyst must understand the cyber security concepts that they are analyzing. Working with the Cyber Security Controls & Accreditation Manager the Cyber Security Compliance Analysts role is to ensure that SLB Cyber Security, IT and Digital Operations, Standards and Procedures are compliant with Regulatory, Industry, Government, Customer, and Internal requirements. This position offers an opportunity to make a strong impact across the company ensuring compliance with relevant standards and building customer trust. Roles and Responsibilities: Support development of a Controls Catalog, as well as all associated workflows for controls identification, ownership, documentation, measurement, acceptance levels/thresholds etc... Support development of an External Cyber Accreditation program which includes defining all the required controls that the compliance program needs to monitor and assess, so that external Cyber Accreditation can be achieved. Partner with legal, compliance, procurement,Technology, Vendor Management, and Business cross-functional teams in respond to Customer or 3rd Party Cyber Security Assessments or Questionnaires Support the creation of new or maintenance of existingsecurityand privacy policies, standards, and specifications to ensure they are current and appropriately aligned with applicable laws, regulations, and the evolution ofsecurityrisks. Support thesecurityexception process, including the completion ofsecurityexceptions, tracking, and following up on alternative mitigating action items included within approvedsecurityexceptions. Support ofsecurityand privacyriskassessmentprocessesfor the company. Remediation ofrisks identified through theriskregister process and contribute towards improving the overallriskmanagement program. It may include supporting annualsecurityassessments, completing writtenreports of results to beshared Support thesecurityand privacy compliance efforts. Stay current with new technologies and best practices relative tosecurity/privacy discipline as well as applicable federal, state, industry, and regulatory compliance. Stay involved in various external professional organizations as appropriate. Report and escalateriskand key metrics. Effectively communicate third partyrisks or requirements identified from due diligence or monitoring to ensure appropriate implementation of controls for accessing or handling firm information Support the development of third-partyrisksecuritystandards and guidelines Support the maintenance and build-out of repositories, tools, and documentation for third partyriskassurance Qualifications and Experience: Education: A Bachelor of Science degree from an accredited university in engineering, computer science, computer information systems or cyber security is strongly preferred; equivalent work experience may be considered. Experience: Minimum of five years of experience within the following areas of integrating security into the business, security management, information assurance, audit, information processes, product security, business architecture positions. Experience in the following areas is highly preferred: NIST Cyber Security Framework, NIST SP800-53, GRC (Governance, Risk, Compliance), Controls Analyst, Internal Controls Analyst, Technology Controls Analyst Additional: Applicant must have a valid work permit if not a US citizen. Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials would be a strong plus General Requirements: Ability to work with and support cross-functional, interdisciplinary teams to achieve tactical and strategic goals, within a global environment. Must exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives. Strong large-scale project management skills and experience. Ability to work at level from initial concept to operationalimplementation. Ability to author technical documentation such as architectures, process diagrams, procedures, policies, verification and validation documentation and integration diagrams. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security related concepts to technical and nontechnical audiences. Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT and ones from NIST. Experience working with Business Continuity/Disaster Recovery policies and procedures would be a strong plus. Experience in preparing executive summary presentations. Must be a critical thinker, with strong problem-solving skills. Able to handle multiple projects and tasks simultaneously. Self-driven, creative & analytical thinker High standards, strong attention to detail. Willing to work flexible hours when required and appropriate. Fluency in written & spoken English SLB is an equal employment opportunity employer. Qualified applicants are considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran or military status, pregnancy (including pregnancy, childbirth and related medical conditions), marital status, or other characteristics protected by law. We are an "Equal Opportunity Employer". We will endeavor to make a reasonable accommodation / modification to the known physical or mental limitations of a qualified applicant with a disability to assist in the hiring process, unless the accommodation would impose an undue hardship on the operation of our business, in accordance with applicable federal, state, and local law. If you believe you require such assistance to complete this form or to participate in the interview process, please contact company website to request assistance. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to. We are committed to a culture where everyone feels like they belong. To learn more about our diversity, equity, inclusion commitments, please visit our Diversity & Inclusion | SLB (slb.com) for more information. SLB is a VEVRAA Federal Contractor- priority referral Protected Veterans requested.



Apply Now

Houston, Texas, United States Houston, Texas, United States

Human Resources

Full Time

candidate to apply via our website

Published On 18-02-2023