Cyber Security Engineer, Senior
Description For Cyber Security Engineer, Senior
The Cyber Governance, Risk, and Compliance (CGRC) team plays a vital role in information security, responsible for ensuring that the organization's information security policies and procedures are aligned with the business goals, and effectively managing risks and complying with regulations. The Cybersecurity GRC team member will be responsible for ensuring the effectiveness of information security within an organization, enhancing our cybersecurity governance, risk, and compliance maturity. This role focuses on control validation and third-party risk management to ensure our security posture meets industry standards and regulatory requirements.
Key Responsibilities:
- Control Validation
- Third-Party Risk Management
- Other Governance and Compliance activities
- Risk Management
- Training and Awareness
Requirements:
- Bachelor's/Master's degree in Cybersecurity, Information Technology, or a related field
- 4-7 years of experience in cybersecurity governance, risk, and compliance
- Strong knowledge of control validation methodologies and third-party risk management practices
- Familiarity with industry standards and regulatory frameworks (e.g., ISO 27001, NIST, TISAX)
- Excellent analytical, problem-solving, and communication skills
- Relevant certifications (e.g., CISA, CISSP, CRISC) are a plus
Minimum Qualifications:
- Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 2+ years of cybersecurity-relevant work experience OR
- High school diploma or equivalent and 4+ years of cybersecurity-relevant work experience
Physical Requirements:
- Frequently transports and installs equipment up to 40 lbs.
Qualcomm is an equal opportunity employer and provides reasonable accommodations for individuals with disabilities during the application/hiring process.
Responsibilities For Cyber Security Engineer, Senior
- Conduct regular assessments and validations of security controls
- Develop and maintain control validation processes and documentation
- Identify gaps in controls and recommend remediation actions
- Collaborate with internal teams to implement and monitor corrective measures
- Assess and manage risks associated with third-party vendors and service providers
- Conduct thorough due diligence and risk assessments for third-party relationships
- Develop and maintain a third-party risk management program
- Monitor third-party compliance with security requirements
- Ensure compliance with relevant industry standards and regulations
- Develop and update cybersecurity policies, standards, and procedures
- Conduct internal audits and assessments
- Prepare and present reports on the status of the GRC program
- Identify, assess, and prioritize cybersecurity risks
- Develop risk mitigation strategies
- Develop and deliver training programs for cybersecurity awareness
Requirements For Cyber Security Engineer, Senior
- Bachelor's/Master's degree in Cybersecurity, Information Technology, or related field
- 4-7 years of experience in cybersecurity governance, risk, and compliance
- Strong knowledge of control validation methodologies and third-party risk management practices
- Familiarity with industry standards and regulatory frameworks (e.g., ISO 27001, NIST, TISAX)
- Excellent analytical, problem-solving, and communication skills
- Relevant certifications (e.g., CISA, CISSP, CRISC) are a plus
Benefits For Cyber Security Engineer, Senior
- Health benefits
- Financial planning programs
- Emotional/mental support resources
- Wellbeing programs
Jobs Related To Qualcomm Cyber Security Engineer, Senior
