BellevueWARecruiter Since 2001
the smart solution for Bellevue jobs

Principal Analyst, Risk Management

Company: T-Mobile
Location: Bellevue
Posted on: June 12, 2021

Job Description:

Are you ready to make a difference in the world of wireless security? Then come join the T-Mobile team as a Principal Analyst, Risk Management!

We are looking for a smart, enthusiastic, and creative Principal Analyst with a history of strategic and tactical execution. The Principal Analyst of Cyber Risk Management is a senior information security leader that oversees enterprise information security governance, risk and conformance (GRC) functions at T-Mobile USA. The Principal Analyst role helps drive the evolution and expansion of the T-Mobile Security Risk Portfolio. We operate in a very fast-paced agile environment with quick decisions. We encourage innovation and expect you to take ownership and initiative. The Cyber Risk Principal will facilitate security related interactions with business partners, suppliers, and service partners. Integration with the cybersecurity community internal to T-Mobile with partners such as engineering, technology, and security organizations is necessary. This person will demonstrate strong critical thinking skills, excellent communication skills, and effectively manage programs, projects, and associated initiatives. A strong understanding of security technologies, architecture, and best practices will be critical to the success of this role. The team maintains corporate data network security infrastructure and provides information security based on the enforcement of the T-Mobile security policies. The team maintains the cybersecurity risk register and portfolio which provides risk landscape information based on the enforcement of the T-Mobile security policies. They conduct risk assessments, correlate security related data across the enterprise, and work with partner teams to ensure security through installing security patches, protection of data, user account guidance, firewalls controls and other access control points, and maintaining anti-virus systems to name a few. The team also assists application owners to understand and implement the security aspects of their applications and advises on best security practices for new company projects and initiative.

  • Over 10 years' experience in a dedicated information security and/or technology role with 8 or more years in a large enterprise
  • 5+ years cybersecurity technical experience
  • Experience with high level design architecture, firewall, internet, lan router, network, protocols, web services and understanding of encryption, obfuscation, tokenization technologies, knowledge of federal & compliance regulations

Leadership:

  • Demonstrates and upholds others to T-Mobile's values which promotes a culture of integrity. Creates a culture of recognition including supporting and increasing organizational recognition
  • Knowledge of cybersecurity policies and regulatory controls, threats, vulnerabilities, and overall risk profile of the enterprise (per team function).
  • Mentor analysts, senior analysts, engineers, architects, and cybersecurity individual contributors to promote successful performance and career growth in alignment with department and enterprise objectives

Communications:

  • Excellent verbal and communication skills necessary to engage with diverse cross functional groups and present effectively to small and large groups
  • Strong presentation skills to large and small audiences
  • Foster environment where team members identify problems, risks to continually review key business initiatives and find optimal resolutions

Analytics:

  • Strong ability to analyze and interpret enterprise risk data from multiple programs to incorporate into a holistic risk landscape

Security

  • In-depth knowledge of security best practices in large-scale environments
  • Subject matter expert in many facets of risk management, compliance & policy, vulnerability analysis & mitigation, risk intelligence and other topics as assigned
  • Strong knowledge of current technological trends and developments in the area of cybersecurity

Problem Solving:

  • Sets high standards for self and uses appropriate level urgency toward goal or project completion
  • Monitors and measures work tasks to ensure deliverables and goals are completed on time
  • Seeks out new technologies and solutions to business problems

Technology:

  • Familiarity with various technologies such as load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec) , Cloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode)

Regulatory Compliance:

  • Knowledge of federal & compliance regulations e.g. SOX, PCI, CPNI, USCGI

Minimum Requirements:

  • Bachelors' Degree in Computer Science, Engineering, or related field. Related work experience may be substituted for education requirements

"Digital Security"

  • Use expert knowledge of cyber risk processes, risk intel, and risk quantification programs to support cyber risk leadership reporting and awareness
  • General knowledge of cybersecurity policies and controls, threats, vulnerabilities and the overall risk profile of the enterprise
  • Constantly improves the processes, tools and methodologies used by cyber risk management
  • Provide proactive guidance to technology teams regarding the changing security, risk, and compliance landscape
  • Partner closely with technology teams and business teams to validate, score issues, develop remediation, and manage remediation to closure
  • Proactively identify opportunities for improving cyber risk processes and framework end to end, work with business leaders to prioritize business opportunities and risks
  • Anticipate and champion needed communication to team, key customers and partners. escalate issues timely, objectively and with sensitivity to team dynamics. demonstrate concise verbal and written communication that is targeted and appropriate to the needs of the audience
  • Provide cybersecurity assessment on issues / findings / risks and/or implementation of cybersecurity controls ensuring adherence to T-Mobile security standards and/or best practices and/or regulatory controls
  • Lead, mature and evangelize security cyber risk programs and projects to partners internal and external to info security
  • Mentor analysts, senior analysts and across teams in enterprise cyber risk management, security best practices, risk remediation and effective customer interaction
  • Also responsible for other Duties/Projects as assigned by business management as needed

Equal Employment Opportunity

We take equal opportunity seriously-by choice.

T-Mobile USA, Inc. is an Equal Opportunity Employer. All decisions concerning the employment relationship will be made without regard to age, race, ethnicity, color, religion, creed, sex, sexual orientation, gender identity or expression, national origin, religious affiliation, marital status, citizenship status, veteran status, the presence of any physical or mental disability, or any other status or characteristic protected by federal, state, or local law. Discrimination, retaliation or harassment based upon any of these factors is wholly inconsistent with how we do business and will not be tolerated.

Keywords: T-Mobile, Bellevue , Principal Analyst, Risk Management, Other , Bellevue, Washington

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Washington jobs by following @recnetWA on Twitter!

Bellevue RSS job feeds