CrawlJobs Logo

Cybersecurity Risk and Controls Framework Expert

https://www.hpe.com/ Logo

Hewlett Packard Enterprise

Location Icon

Location:
United States , Spring

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

105500.00 - 243000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Cybersecurity Risk and Controls Framework Expert to analyse the regulatory compliance, business and operational risk requirements related to cybersecurity and develop a framework against which control requirements can be defined and applied. This will include analyzing the inventory of cyber policies and standards and validating them against the risk and controls framework as well as against the threat landscape. This role will also be responsible for driving enterprise risk reporting and creating the right awareness and visibility for executive decision making.

Job Responsibility:

  • Support Governance, Risk and Compliance (GRC) leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework
  • Facilitating a gap analysis of the current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyse the current suite of controls against the control framework
  • Ensure that changes to risk governance frameworks are effectively communicated
  • Work with regional representatives to coordinate the scanning for regulatory changes related to cybersecurity
  • Provide expert opinion on HPE's risk and effectiveness of our policies and standards
  • Support the handling of questions pertaining to cyber policies and standards from regulators, partners and customers
  • Deliver presentations and updates to key business and technology stakeholders
  • Provide timely insight to business and technology partners on risk and controls

Requirements:

  • Bachelor's degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience
  • CISSP, CRISC, or similar certification
  • 5-7 years of experience in Information Security, IT Governance, and/or Risk Management
  • 5+ years of experience working with various industry standards and frameworks on risks and controls (e.g. ISO 27001, NIST CSF, COBIT)
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
  • Excellent documentation, communication, and problem-solving skills
What we offer:
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing

Additional Information:

Job Posted:
November 14, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Hewlett Packard Enterprise - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cybersecurity Risk and Controls Framework Expert

Cybersecurity Risk and Controls Framework Expert

We are seeking a Cybersecurity Risk and Controls Framework Expert to analyze reg...
Location
Location
United States , Spring
Salary
Salary:
105500.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expert in a broad range of Information Security domains (e.g., Application Security, Cloud Security, Network Security, Data Security, Infrastructure Security)
  • Strong understanding of cybersecurity control frameworks (e.g., NIST CSF, ISO 27001)
  • Proven experience in risk assessments and analysis
  • Proven experience in defining and implementing cybersecurity policies, standards and guidelines across multiple platforms
  • Strong organizational skills and attention to detail
  • Ability to work effectively with technical and non-technical stakeholders
  • Excellent documentation, communication, and problem-solving skills
Job Responsibility
Job Responsibility
  • Support Governance, Risk and Compliance leadership in delivering various risk overview summaries
  • Contribute to the development of the Cyber risk governance framework by leveraging existing frameworks
  • Facilitate a gap analysis of current processes against the Risk management framework
  • Provide subject matter expertise on the control framework, policies, standards and guidelines
  • Analyze current controls against the control framework
  • Ensure effective communication of changes to risk governance frameworks
  • Work with regional representatives to coordinate regulatory scanning
  • Provide expert opinion on HPE’s risk and effectiveness of policies
  • Handle questions on cyber policies and standards
  • Deliver presentations and updates to key stakeholders
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Expert

The Third Party Risk Management Expert manages the run of Third Party Risk Manag...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree (Legal, Business, Economics, Computer Science or similar)
  • 2-5 years of relevant working experience in Compliance, Vendor Management, Risk Management, Audit or Contract Management domains
  • Familiarity with industry frameworks like ISO 27001, Cybersecurity Framework, SOC 2 and overall understanding of regulations such as GDPR, DORA, etc
  • Knowledge of risk assessment methodologies, including inherent risk and residual risk assessments
  • Strong customer service orientation, developed social skills and cross-cultural experience and ability to operate within a global team environment / work within global virtual teams
  • Fluent English is necessary, knowledge of German or other languages is a plus and high quality of oral and written communication skills
  • Self-motivated, proactive and customer-centric working style
  • Experience in setting priorities and work to tight deadlines
  • Ability to deliver high-quality results and takes ownership of initiatives.
Job Responsibility
Job Responsibility
  • Manage and oversee efficient and effective implementation of Allianz Third Party Risk Management Standard and Outsourcing Policy across Allianz Operating Entities to ensure compliance related to DORA and other regulatory requirements
  • Perform vendor service classification and evaluate vendor security practice, including cloud security, data protection and incident response
  • Plan and facilitate completion of all Risk and Control Assessments for vendor population
  • Enable operational execution of activities related to vendor risk management and of the overall TPRM process using the internal tools and platforms (RSA Archer, ServiceNow)
  • Collaborate with relevant departments and stakeholders involved in the process
  • Develop and implement a TPRM strategy that aligns with business goals
  • Independently track progress of TPRM actions of operational entities and pro-actively communicate with stakeholders
  • Prepare Third Party Vendor Management related reports / dashboards and report to senior management
  • Support in remediation actions required to ensure compliance with the Digital Operational Resilience Act and other regulatory requirements.
What we offer
What we offer
  • Fixed salary compensation along with fixed benefits
  • Flexible benefits that can be individually customized
  • Additional vacation days (work tenure, Allianz tenure, special events, Paid day for child medical check-up)
  • Rewards and Recognition Program (Team Excellence Award, Anniversary Awards, Above & Beyond Awards, Thank you for your contribution!)
  • Complete training curricula available (tailored courses): International Certifications (Agile, Lean Six Sigma, Prince, ITIL, IFOA, ACCA, IACCM etc.), Comprehensive Leadership Programs, LinkedIn Learning, German Language Courses for any level
  • All you can read with Bookster
  • Share Purchase Plan
  • Allowances for special events (Birth Allowance, Losing a Family Member)
  • Flexible working environment (work from home, hybrid)
  • FlexiBenefits including Medical services, Private pension, Internal Tourism, Meal Tickets.
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Expert

The Third Party Risk Management Expert manages the run of Third Party Risk Manag...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree (Legal, Business, Economics, Computer Science or similar)
  • 2-5 years of relevant working experience in Compliance, Vendor Management, Risk Management, Audit or Contract Management domains
  • familiarity with industry frameworks like ISO 27001, Cybersecurity Framework, SOC 2 and overall understanding of regulations such as GDPR, DORA, etc
  • knowledge of risk assessment methodologies, including inherent risk and residual risk assessments
Job Responsibility
Job Responsibility
  • Manage and oversee efficient and effective implementation of Allianz Third Party Risk Management Standard and Outsourcing Policy across Allianz Operating Entities to ensure compliance related to DORA and other regulatory requirements
  • perform vendor service classification and evaluate vendor security practice, including cloud security, data protection and incident response
  • plan and facilitate completion of all Risk and Control Assessments for vendor population
  • enable operational execution of activities related to vendor risk management and of the overall TPRM process using the internal tools and platforms
  • collaborate with relevant departments and stakeholders involved in the process
  • develop and implement a TPRM strategy that aligns with business goals
  • independently track progress of TPRM actions of operational entities and proactively communicate with stakeholders
  • prepare Third Party Vendor Management related reports/dashboards and report to senior management
  • support in remediation actions required to ensure compliance with the Digital Operational Resilience Act and other regulatory requirements
What we offer
What we offer
  • Fixed salary compensation along with fixed benefits
  • flexible benefits that can be individually customized
  • additional vacation days (work tenure, Allianz tenure, special events, paid day for child medical check-up)
  • Rewards and Recognition Program (Team Excellence Award, Anniversary Awards, Above & Beyond Awards, Thank you for your contribution!)
  • complete training curricula available (tailored courses): International Certifications (Agile, Lean Six Sigma, Prince, ITIL, IFOA, ACCA, IACCM etc.), Comprehensive Leadership Programs, LinkedIn Learning, German Language Courses
  • All you can read with Bookster
  • Share Purchase Plan
  • allowances for special events (Birth Allowance, Losing a Family Member)
  • flexible working environment (work from home, hybrid)
  • medical services, private pension, internal tourism, meal tickets and more
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Senior Expert

The Third Party Risk Management Expert manages the run of Third Party Risk Manag...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree (Legal, Business, Economics, Computer Science or similar)
  • 2-5 years of relevant working experience in Compliance, Vendor Management, Risk Management, Audit or Contract Management domains
  • Familiarity with industry frameworks like ISO 27001, Cybersecurity Framework, SOC 2 and overall understanding of regulations such as GDPR, DORA, etc
  • Knowledge of risk assessment methodologies, including inherent risk and residual risk assessments
  • Strong customer service orientation, developed social skills and cross-cultural experience and ability to operate within a global team environment / work within global virtual teams
  • Fluent English is necessary, knowledge of German or other languages is a plus and high quality of oral and written communication skills
  • Self-motivated, proactive and customer-centric working style
  • Experience in setting priorities and work to tight deadlines
  • Ability to deliver high-quality results and takes ownership of initiatives
Job Responsibility
Job Responsibility
  • Manage and oversee efficient and effective implementation of Allianz Third Party Risk Management Standard and Outsourcing Policy across Allianz Operating Entities to ensure compliance related to DORA and other regulatory requirements
  • Perform vendor service classification and evaluate vendor security practice, including cloud security, data protection and incident response
  • Plan and facilitate completion of all Risk and Control Assessments for vendor population
  • Enable operational execution of activities related to vendor risk management and of the overall TPRM process using the internal tools and platforms (RSA Archer, ServiceNow)
  • Collaborate with relevant departments and stakeholders involved in the process
  • Develop and implement a TPRM strategy that aligns with business goals
  • Independently track progress of TPRM actions of operational entities and pro-actively communicate with stakeholders
  • Prepare Third Party Vendor Management related reports / dashboards and report to senior management
  • Support in remediation actions required to ensure compliance with the Digital Operational Resilience Act and other regulatory requirements
What we offer
What we offer
  • Fixed salary compensation along with fixed benefits
  • Flexible benefits that can be individually customized
  • Additional vacation days (work tenure, Allianz tenure, special events, Paid day for child medical check-up)
  • Rewards and Recognition Program (Team Excellence Award, Anniversary Awards, Above & Beyond Awards, Thank you for your contribution!)
  • Complete training curricula available (tailored courses): International Certifications (Agile, Lean Six Sigma, Prince, ITIL, IFOA, ACCA, IACCM etc.), Comprehensive Leadership Programs, LinkedIn Learning, German Language Courses for any level
  • All you can read with Bookster
  • Share Purchase Plan
  • Allowances for special events (Birth Allowance, Losing a Family Member)
  • Flexible working environment (work from home, hybrid)
  • Medical services, Private pension, Internal Tourism, Meal Tickets and many other benefits of your choice
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Expert

The Third Party Risk Management Expert manages Third Party Risk Management & Out...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree (Legal, Business, Economics, Computer Science or similar)
  • 2-5 years of relevant working experience in Compliance, Vendor Management, Risk Management, Audit or Contract Management domains
  • Familiarity with industry frameworks like ISO 27001, Cybersecurity Framework, SOC 2 and overall understanding of regulations such as GDPR, DORA, etc
  • Knowledge of risk assessment methodologies, including inherent risk and residual risk assessments
  • Strong customer service orientation, developed social skills and cross-cultural experience and ability to operate within a global team environment / work within global virtual teams)
  • Fluent English is necessary, knowledge of German or other languages is a plus and high quality of oral and written communication skills
  • Self-motivated, proactive and customer-centric working style
  • Experience in setting priorities and work to tight deadlines
  • Ability to deliver high-quality results and takes ownership of initiatives
Job Responsibility
Job Responsibility
  • Manage and oversee efficient and effective implementation of Allianz Third Party Risk Management Standard and Outsourcing Policy across Allianz Operating Entities to ensure compliance related to DORA and other regulatory requirements
  • Perform vendor service classification and evaluate vendor security practice, including cloud security, data protection and incident response
  • Plan and facilitate completion of all Risk and Control Assessments for vendor population
  • Enable operational execution of activities related to vendor risk management and of the overall TPRM process using the internal tools and platforms (RSA Archer, ServiceNow)
  • Collaborate with relevant departments and stakeholders involved in the process
  • Develop and implement a TPRM strategy that aligns with business goals
  • Independently track progress of TPRM actions of operational entities and pro-actively communicate with stakeholders
  • Prepare Third Party Vendor Management related reports / dashboards and report to senior management
  • Support in remediation actions required to ensure compliance with the Digital Operational Resilience Act and other regulatory requirements
What we offer
What we offer
  • Fixed salary compensation along with fixed benefits
  • Flexible benefits that can be individually customized
  • Additional vacation days
  • Rewards and Recognition Program
  • Complete training curricula available (tailored courses)
  • International Certifications (Agile, Lean Six Sigma, Prince, ITIL, IFOA, ACCA, IACCM etc.)
  • Comprehensive Leadership Programs
  • LinkedIn Learning
  • German Language Courses for any level
  • All you can read with Bookster
  • Fulltime
Read More
Arrow Right

Third Party Risk Management Expert

The Third Party Risk Management Expert manages the run of Third Party Risk Manag...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University degree (Legal, Business, Economics, Computer Science or similar)
  • 2-5 years of relevant working experience in Compliance, Vendor Management, Risk Management, Audit or Contract Management domains
  • Familiarity with industry frameworks like ISO 27001, Cybersecurity Framework, SOC 2 and overall understanding of regulations such as GDPR, DORA, etc
  • Knowledge of risk assessment methodologies, including inherent risk and residual risk assessments
Job Responsibility
Job Responsibility
  • Manage and oversee efficient and effective implementation of Allianz Third Party Risk Management Standard and Outsourcing Policy across Allianz Operating Entities to ensure compliance related to DORA and other regulatory requirements
  • Perform vendor service classification and evaluate vendor security practice, including cloud security, data protection and incident response
  • Plan and facilitate completion of all Risk and Control Assessments for vendor population
  • Enable operational execution of activities related to vendor risk management and of the overall TPRM process using the internal tools and platforms
  • Collaborate with relevant departments and stakeholders involved in the process
  • Develop and implement a TPRM strategy that aligns with business goals
  • Independently track progress of TPRM actions of operational entities and pro-actively communicate with stakeholders
  • Prepare Third Party Vendor Management related reports/dashboards and report to senior management
  • Support in remediation actions required to ensure compliance with the Digital Operational Resilience Act and other regulatory requirements
What we offer
What we offer
  • Fixed salary compensation along with fixed benefits
  • Flexible benefits that can be individually customized
  • Additional vacation days (work tenure, Allianz tenure, special events, Paid day for child medical check-up)
  • Rewards and Recognition Program (Team Excellence Award, Anniversary Awards, Above & Beyond Awards, Thank you for your contribution!)
  • Complete training curricula available (tailored courses): International Certifications (Agile, Lean Six Sigma, Prince, ITIL, IFOA, ACCA, IACCM etc.), Comprehensive Leadership Programs, LinkedIn Learning, German Language Courses for any level
  • All you can read with Bookster
  • Share Purchase Plan
  • Allowances for special events (Birth Allowance, Losing a Family Member)
  • Flexible working environment (work from home, hybrid)
  • Medical services
  • Fulltime
Read More
Arrow Right
New

Cloud Cybersecurity Subject Matter Expert

Barbaricum is seeking a highly qualified Cloud Cybersecurity Subject Matter Expe...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, IT, or a related discipline
  • 8+ years of experience managing cybersecurity projects of similar size and complexity within cloud environments
  • 8+ years of direct experience with NIST RMF, NIST SP 800-53, STIGs, SCAP, IAVAs, and FISMA
  • One of the following certifications: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP, CISSP
Job Responsibility
Job Responsibility
  • Lead cybersecurity support for MC&FP programs operating in cloud-based environments
  • Guide and mentor technical teams on secure cloud architecture, policy implementation, and threat mitigation strategies
  • Provide direct support for compliance with NIST Risk Management Framework (RMF), FISMA, and relevant cybersecurity directives
  • Manage and oversee vulnerability assessments, system audits, and incident response planning
  • Support the integration of security controls including STIGs, SCAP, IAVA compliance, and policy documentation
  • Collaborate with leadership to ensure cybersecurity is embedded across program lifecycles and mission-critical applications
Read More
Arrow Right

Cybersecurity GRC Tool Analyst

Cybersecurity GRC Tool Analyst to analyse the technology requirements of the var...
Location
Location
Canada
Salary
Salary:
97600.00 - 181000.00 CAD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Information Technology, Risk Management or a related field, or equivalent experience
  • CISSP, ISO 27001 Lead Implementer, or similar certification
  • GRC platform certifications (e.g., Archer Certified Professional, ServiceNow GRC, Drata Admin, OneTrust Certified)
  • ITIL Foundation (a plus)
  • 5-7 years of experience in Information Security, IT Governance, or Risk Management
  • 5+ years of experience working with GRC platforms (e.g., Archer, ServiceNow GRC, AuditBoard, Drata, OneTrust, or similar)
  • Expert at working with Governance Risk & Compliance platforms
  • Strong understanding of cybersecurity and compliance frameworks (e.g., NIST CSF, ISO 27001)
  • Experience with basic integrations and workflow configurations
  • Strong organizational skills and attention to detail
Job Responsibility
Job Responsibility
  • Administer and maintain the GRC platform, including configurations, workflows, and reporting dashboards
  • Support the integration of the GRC tool with key enterprise systems (e.g., asset inventory, ticketing systems, vulnerability management tools)
  • Collaborate with cybersecurity, policy, risk, compliance, and IT teams to capture business requirements and translate them into functional tool capabilities
  • Assist in onboarding and managing control frameworks (e.g., ISO 27001, SOC 2, NIST CSF, FedRAMP) within the platform
  • Monitor data quality, ensure accurate reporting, and maintain platform integrity
  • Support control owners and stakeholders in using the GRC platform for assessments, evidence collection, and tracking remediation activities
  • Maintain user roles and permissions, ensuring proper access management
  • Document processes, workflows, and platform configurations
  • Provide training and guidance to end users on tool functionality and best practices
  • Coordinate with tool vendors for issue resolution, upgrades, and enhancements
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right
Welcome to CrawlJobs.com
Your Global Job Discovery Platform
At CrawlJobs.com, we simplify finding your next career opportunity by bringing job listings directly to you from all corners of the web. Using cutting-edge AI and web-crawling technologies, we gather and curate job offers from various sources across the globe, ensuring you have access to the most up-to-date job listings in one place.
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Poland Jobs Ireland Jobs Germany Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2025 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy