Simplify Logo

Full-Time

Information Security GRC Specialist – Risk Program Lead

Confirmed live in the last 24 hours

Western Digital

Western Digital

10,001+ employees

Provides high-performance data storage solutions

Data & Analytics
Hardware

Senior

Irvine, CA, USA

Category
Cybersecurity
IT & Security
Required Skills
Management
Requirements
  • Bachelor's degree in Information Security, Computer Science, or equivalent work experience.
  • 8+ years of experience in information security, including risk management, risk assessments, reporting, and metrics analysis.
  • 4+ years of experience in technical roles, or similar technical proficiency are highly desirable.
  • Proficiency in risk assessment methodologies, tools, and techniques.
  • Experience in conducting risk assessments, vulnerability assessments, and compliance audits.
  • Strong understanding of information security frameworks, standards, and best practices (e.g., ISO 27001, NIST, GDPR).
  • Experience in generating and interpreting information security metrics and reports.
  • Relevant certifications such as CISSP, CISM, CRISC, GSNA or similar are highly desirable.
  • Technical certifications such as GCIH, GPEN, CEH, OSCP or similar are highly desirable.
Responsibilities
  • Implement enterprise-wide risk management frameworks that align with industry standards (e.g. ISO27001, NIST, etc).
  • Lead technical and business process risk assessment activities to identify, evaluate, and prioritize information security risks across the organization, including threats, vulnerabilities, and potential impacts to information and technology assets.
  • Develop and drive implementation of effective risk management strategies to mitigate identified risks, ensuring alignment with industry best practices and regulatory requirements.
  • Collaborate across the organization to ensure the integration of risk management practices into organizational processes and projects.
  • Generate comprehensive reports and metrics to communicate the status of information security risks to stakeholders and leadership.
  • Analyze security data to identify trends, vulnerabilities, and areas for improvement.
  • Collaborate with internal and external auditors to facilitate security audits and assessments.
  • Stay current with industry trends, emerging threats, and best practices for information security and risk management.
  • Provide expert guidance and support in developing and maintaining information security policies, standards, and procedures.

Western Digital specializes in high-performance data storage solutions, offering SSDs, HDDs, USB drives, and memory cards designed to power current technology and drive future innovations.

Company Stage

M&A

Total Funding

$927.9M

Headquarters

San Jose, California

Founded

2014

Growth & Insights
Headcount

6 month growth

0%

1 year growth

0%

2 year growth

4%

Benefits

Paid sick leave & vacation time

Medical/dental/vision insurance

Life, accident, & disability insurance

Tax-advantaged flexible spending and health savings accounts

Employee assistance program

Tuition reimbursement

Employee stock purchase plan

Western Digital Savings 401(k) Plan