Job Overview:
Consult with business units on compliance requirements, build resilience, and enforce policies. This global role addresses information security needs across Arm.
Good interpersonal skills are needed to implement governance practices across all leadership levels at Arm, establish and lead metrics, and produce monthly leadership review materials.
An ideal candidate can strategically address governance, compliance, and business outcomes, clearly communicate objectives to partners, is diligent, and operates effectively at pace.
Responsibilities:
The role has direct line management responsibilities so must be able to set clear objectives and support colleagues to achieve those objectives including role and career development.
- Research, and apply relevant laws, regulations, and industry standards to the organization's information systems and practices.
- Act as the Enterprise IT (EIT) Business Continuity Management (BCM) Lead to operationalize and assure a capability of safeguarding our services and operations in the face of disruption and disaster. Further, to mature this capability to put us on a firm path to becoming operationally resilient.
- Responsible for Governance through management of policies and overseeing internal processes to check they meet the required standards. Working with different committees to make sure these standards are met including management of exceptions.
- Develop reporting to identify, measure, monitor and control the objectives and key results.
- Maintain service level agreements for requests and issues raised via ServiceNow (Integrated Risk Module and Jira.
Required Experience and Skills:
- Experience with a variety of compliance frameworks, such as HIPAA and PCI DSS and cybersecurity frameworks, such as the NIST Cybersecurity Framework, ISO 27001, ISO 27002 and SOC2.
- BCM programme governance - the development and maintenance of a strategy and enabling governance framework, ideally ISO22301 aligned.
- Solid understanding of regulations, industry standards, and leading practices related to the security of application, platform, network, and cloud as well as data security, and privacy.
- Execution oriented with an ability to run multiple projects simultaneously with a focus on outcomes driving impact
- Demonstrable experience in developing simple, effective and easy to adopt security policies.
- Ability to influence at all levels to drive governance, via committees, and reduction of exceptions via direct engagement.
"Nice To Have" Skills and Experience:
- Experience with EU regulations and EU data privacy.
- A good understanding of the variety of technical security control concepts, procedures and systems (e.g., Email Security, AV, EDR, Firewalls).
- Security qualifications i.e., CISSP, CISM!
- Awareness of project management techniques, while having the ability to handle and chair meetings when required!
In Return:
We offer exciting and interesting work in global and diverse team. Arm's growth trajectory will ensure career progression and the opportunity to have a significant impact on our success.
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
Hybrid Working at ArmArm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
Equal Opportunities at ArmArm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.