Risk and Compliance Representative

Project Role : Risk and Compliance Representative
Project Role Description : Support service delivery through quality and risk management. Increase awareness of compliance policies and processes.
Must have skills : Network Infrastructures
Good to have skills : Network Security Operations, Network Analytics
Minimum 7.5 year(s) of experience is required
Educational Qualification : 15 years full time education

Global Network Services – Network Platforms - Service Assurance - Risk Management Lead. Job description. The GNS SA Risk Lead has the following primary responsibilities: CIONOW – on a weekly basis monitor the CIONOW dashboard for any reported vulnerabilities or patching requirements. This is for all in scope applications within the Network Platforms area. All identified vulnerabilities / patching updates are to be notified to the application POC for remediation. Mobile BitSight Monitoring & Remediation – The risk lead is responsible for monitoring and driving remediation of weekly identified incidents. These comprise of incidents where mobile devices accessing the internet are not obfuscated as per the set standard. Service Assurance Control Points- On a daily basis, monitor and remediate all in scope identified control points within the Network Portal. Currently there are 17 control points in scope. Some examples are: Missing or Incorrect building codes, missing OS version, missing Site Type, missing Country, missing serial number, missing region etc. Process Review, Improvement planning and implementation – Perform in depth process reviews of device configuration and device onboarding standards and cross reference them against the defined control points as mentioned above. Drive innovation and long-term strategic improvements to eliminate the need for the above defined control points. This is a high value add area that can significantly reduce resource efforts. Device Life Cycle Administration & Auditing - Twice per year perform an audit of all devices that do NOT have an EOVS (End of Vulnerability Support) date set in the Network Portal. The audit requires a review of vendor EOVS publications. Any new publication is to be entered against the relevant device model or OS Version within the Admin segment of the Network Portal. Guidance – All devices or OS versions that have reached EOVS are to have guidance defined using Architecture standards. Ensure all device owners have been notified by either reaching out to them directly or by notifying the Life Cycle Management team. Team management and delegation of all in scope tasks – as the Risk Lead it is your responsibility to manage, oversee and delegate all in scope tasks and duties. Ensure team tasks are handled in a timely and accurate manner. Track the performance of any team members and provide lead guidance on a regular basis.