VP, Cyber Assurance

The Vice President of Security Assurance, Governance, Risk, and Compliance organization (SA/GRC) will be responsible for the overall leadership of the organization and is considered a critical member of the NBCUniversal Cyber Security leadership team. This individual reports directly to the Chief Information Security Officer and will set the strategic direction of the organization’s security evaluation, embedded security engineering model, and risk management processes and ensure their effective operation. Key areas of focus include managing the organizations governance program, risk management and trending lifecycle, compliance and policy management, corporate audit liaison functions and leading cyber security assurance responsible for risk evaluation and remediation. This role will interact with various key stakeholders within the NBCUniversal Cyber Security organization and drive relationship management across the NBCUniversal business areas. They are expected to promote, foster, and advocate an environment of collaboration, diversity, and inclusion. The successful candidate will be responsible for the following activities: Setting the strategic direction of the SA/GRC organization with alignment across key Cyber partner organizations and the overall Cyber Security strategy. Responsible for the transformation and maturity of existing functions including ownership of the risk management lifecycle and operational processes. Embedding security resources within technology teams across the NBCUniversal enterprise to support a culture of shifting-security left and enabling engineering teams to take ownership of the security of their projects and products. Establishing a mature model of Cyber assurance and validation of security controls to augment embedded security engineering Direct cross business engagement, interactions, intake of security requests and prioritization across SA/GRC services. Evaluating security risk of technology implementations across all brands and business units and establishing appropriate accountability within business leadership for accepted risk Crossing business lines, forging key stakeholder relationships, and driving an inclusive cyber defense mission applicable to NBCUniversal and its business areas. Contributing to the planning and execution of Cyber security programs focused on adversary threat pivots, alignment to Cyber security strategy, and burndown of Enterprise risk. Providing regular status updates to NBCUniversal Cyber Security leadership and business area stakeholders regarding SA/GRC organization current state, growth/advancement, and quantitative/qualitative operations metrics. Collaborate and drive productivity and effective integration with adjacent NBCUniversal Cyber Security functions and specifically the synergies required across other business engagement facing teams (i.e. Information Security Officers) Maintaining an effective feedback loop with business partners –seeking and integrating business area feedback into daily operations and the strategic growth and maturity of the SA/GRC function. Influencing the NBCU Cyber Security Organization, executing its strategic and tactical mission, and being a leader of its transformation, maturity, and sustainability. Managing, developing, and supporting staff across a wide range of experience levels and maintaining a high bar for effectiveness and inclusion on your team.