CommScope, Inc. Risk/Compliance Analyst in Hickory, North Carolina

Everyone communicates. It’s the essence of the human experience. How we communicate is evolving. Technology is reshaping the way we live, learn and thrive. The epicenter of this transformation is the network—our passion. Our experts are rethinking the purpose, role and usage of networks to help our customers increase bandwidth, expand capacity, enhance efficiency, speed deployment and simplify migration. From remote cell sites to massive sports arenas, from busy airports to state-of-the-art data centers— we provide the essential expertise and vital infrastructure your business needs to succeed. The world’s most advanced networks rely on CommScope connectivity.

CommScope is seeking a Security Risk Analyst. The individual contributor is accountable for supporting the development and implementation of an Enterprise Risk Management program and related processes. Will work collaboratively with the corporate business groups to ensure a consistent and integrated approach is applied to Risk Management that aligns to the overall business mandate. As a representative of Enterprise Information Security (EIS) the position supports the appropriate design, implementation, and/or execution of the Risk Management function. This position requires a tenacious individual with effective communication, problem-solving, relationship and consensus-building skills and a high degree of personal initiative and attention to detail. This position can be in our Hickory, NC or Richardson, TX office.

Duties & Responsibilities

  • Conduct risk assessments, triage, requirements, solution, scheduling

  • Moderate security assessments

  • Identify opportunities to improve risk posture, remediate or mitigate risks, and assess residual risks

  • Communicate threat, risk, and vulnerability assessment findings to information system owners, data owners, and/or appropriate business partners

  • Coordinate communication with various resources and provide general support on information security and risk management related issues

  • Effectively identifies, collaborates and maintains relationships with relevant stakeholders

  • Portrays strong facilitation, negotiation, and conflict resolution skills

  • Translates requirements and risk concepts into relevant and understandable terms

  • Manages individual workload to deliver with excellence on simultaneous projects and priorities each with tight schedules

Education & Skills

  • Bachelor’s Degree required with 5 or more years of related experience or a Master Degree and 2 or more years related experience

  • Familiar with risk and control frameworks, and process improvement models (e.g. PCI DSS, NIST RMF, HIPAA, ISO 27001/27002, ITIL, CSA)

  • Prior experience working with diverse, cross-functional, cross-departmental projects and technologies

  • Well-rounded understanding of technology, operations and key business processes

  • Strong interpersonal skills and excellent written and verbal communication skills

  • Intermediate to advanced proficiencies with MS Excel, MS Word, and MS PowerPoint

  • Demonstrates a high degree of ethics; instills trust and credibility

  • Experienced in policy development & management

  • Possesses knowledge of security technologies

Preferred Skills

  • 1 year of related experience focused on IT Security/Risk preferred

  • Experience with GRC tools. Archer experience

  • CISSP, CRISC or CISM certification

It is the policy of CommScope to provide Equal Employment Opportunities to all individuals based on merit, qualifications and abilities. CommScope does not discriminate in employment opportunities or practices on the basis of race, color, religion, gender (including pregnancy), national origin, age or any other characteristics as protected by law. Furthermore, this contractor and subcontractor shall abide by the requirements of 41 CFR 60-300.5(a) and 41 CFR 60-741.5(a). These regulations prohibit discrimination against qualified protected veterans and qualified individuals on the basis of disability, and require affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified protected veterans and qualified individuals with disabilities.