This listing was posted on Professional Diversity Network.
Information Assurance Engineer: Governance, Risk & Compliance
Location:
Omaha, NE
Description:
Reference Number: 1486 Department: Technology Apply early as this job may be filled at any time If you wish to solicit an employee referral for this position, please ensure the employee submits the referral prior to submitting your application. Description Are you looking for a Tech position where you can really make a difference for the Company? Here is your opportunity to ensure we do it right! This position is your chance to provide solutions to business stakeholders through consultation and expertise in cyber security best practices, standard IT control frameworks, and Company policies. This position ensures that the Company's technology initiatives comply with all relevant and applicable information security and privacy standards, federal and state regulations, and industry best practices.As a member of the Information Assurance team, you will have the opportunity to grow your Cyber Security knowledge while using your current skills to improve the overall Cyber Security posture of Union Pacific. Team members perform red team testing; vulnerability assessments; forensics; administer a breadth of industry-leading security products; provide authentication and authorization services; collaborate with team members to identify, analyze and mitigate cyber threats; and consult with other IT and business teams to provide secure technology solutions for the Company. The mission of the Information Assurance group is to ensure the confidentiality, integrity, and availability of Union Pacific's computing resources, as well as, providing a reliable and scalable security infrastructure. Team members are given the autonomy to explore new and creative solutions to securing the information technology landscape of Union Pacific. Accountabilities * Align and maintain the Company's cyber security policies and standards to industry compliance frameworks, such as CIS and NIST CSF* Conduct cyber security gap analysis assessments against industry standards, applicable regulations, and best practices* Work collaboratively with Business and Tech teams to assess functional and security requirements for 3rd party service solution providers* Manage multiple deliverables and timelines across teams to ensure quality, on-time product deliveries* Consult with other IT teams on secure implementation procedures for the Company's computing environments * Lead and execute compliance audits and remediation projects within established control areas* Implement technologies and automation processes to enhance the Company's security posture based on threats, attack vectors, and vulnerabilities* Assist in assessing, measuring, evaluating, and improving the Company's readiness to deal with cyber security and compliance risks* Identify and evaluate: 1) business and technology risks, 2) internal controls which mitigate risks, and 3) methods and technologies to improve the internal control environment Qualifications - Required * A Bachelor or Master's Degree in Cyber Security, Information Assurance, Computer Science, Management Information Systems, or related field, or a minimum of 6 years of recent CIS or NIST Framework Consulting experience may be taken into account in lieu of a degree.* Excellent written and dynamic verbal communication skills* Experience implementing or assessing cyber security programs against the CIS or NIST CSF framework* Demonstrated understanding of industry standards (NIST 800-53, ISO 27002), control objectives, cyber threats and vulnerabilities* Solid analytical and technical skills* Must be flexible and able to handle stressful situations in a professional manner* Demonstrated ability to work under minimal supervision* High degree of self-motivation, commitment and integrity* Ability to work well with others and as a member of a team Qualifications - Preferred * Recent experience in Windows or Linux system or security administration* Recent experience in evaluating or completing a SOC 2 Type 2 certification for an enterprise* 2+ years recent experience with one or more scripting languages: perl, python, PowerShell* Compliance and operational experience in information security * Demonstrated experience in creating or conducting security awareness training for a large enterprise* Experience creating scripts to analyze data and automate processes* Experience in data classification and sensitive information handling procedures Physical and Mental Job Requirements What we offer: A strengths-based, engagement-focused, and performance-oriented culture A flexible, casual and hybrid work environment that allows you to work on-site and from home. (as the job allows) Ongoing learning, development, and Educational Assistance (including little to no out-of-pocket cost for online and in-person courses at the University of Nebraska at Omaha) 401(k) with 100% match up to 6%, plus additional automatic 3% (contribute 6% and UP will contribute 9% [6% + 3%]) Employee Stock Purchase Plan with 40% match up to 5% (contribute 5% and UP will contribute 2%) Medical, dental and vision insurance, company-paid disability, life, and AD&D insurance Health Savings Account (with company contribution) Dependent Care Savings Account and Transportation Spending Account On-site cafeteria (with employee discount), fitness center (free to employees), federal credit union, all in Union Pacific Center headquarters building in Omaha, Nebraska Wellness and Employee Assistance Programs Adoption/Surrogacy Assistance, paid Maternity and Parental Leave along with nearby state-of-the-art child development center Competitive compensation including eligibility for annual merit, bonus, and equity programs dependent on job level and personal and company performance
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to Professional Diversity Network
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Information Assurance Engineer: Governance, Risk & Compliance
Information Assurance Engineer: Governance, Risk & Compliance is a Engineering Engineer Job at Union Pacific Railroad located in Omaha NE. Find other listings like Information Assurance Engineer: Governance, Risk & Compliance by searching Oodle for Engineering Engineer Jobs.
Information Assurance Engineer: Governance, Risk & Compliance is a Engineering Engineer Job at Union Pacific Railroad located in Omaha NE. Find other listings like Information Assurance Engineer: Governance, Risk & Compliance by searching Oodle for Engineering Engineer Jobs.