Sr Analyst, Cybersecurity Compliance and Policy - Government

$116,500 - $157,600/Yr

T-Mobile US - Bellevue, WA

posted 5 months ago

Full-time - Mid Level
Bellevue, WA
Telecommunications

About the position

Be unstoppable with us! T-Mobile is synonymous with innovation—and you could be part of the team that disrupted an entire industry! We reinvented customer service, brought real 5G to the nation, and now we're shaping the future of technology in wireless and beyond. Our work is as exciting as it is rewarding, so consider the career opportunity below as your invitation to grow with us, make big things happen with us, above all, #BEYOU with us. Together, we won't stop! Are you ready to make a difference in the world of wireless cybersecurity, governance, risk and compliance? Then join our team as our next Sr Analyst, Compliance - Cybersecurity. As a member of the Cybersecurity Policy and Compliance - Government team, you have the unique opportunity to have direct and measurable impact on T-Mobile's compliance with regulatory, contractual requirements, and security policies. You will be instrumental in enabling T-Mobile's compliance to various regulations and audits such as: Cybersecurity Maturity Model Certification (CMMC), NIST 800-171 and various federal, state and local government contractual obligations. This individual will become an authority on representing government compliance lanes in support of the business and technology organizations. Translate regulatory and contractual requirements into process & system impacts and functional requirements designed to ensure operational compliance. Responsible for defining the accreditation boundary, control development, effectiveness testing, and audit management. They will identify and manage remediation activities, prepare reports and budgets, consult on organizational strategy, propose security tools, and process changes. Build strong working relationships and partnerships within own organization and across technology and business teams; strategically communicate the status, risks, and issues associated with the compliance program.

Responsibilities

  • Enable compliance to various regulations, industry standards, and company policies including but not limited to CMMC, NIST 800-171 as well as terms and conditions related to T-Mobile's government contracts
  • Lead security, compliance, and risk assessments of processes and technologies to evaluate the effectiveness of compliance, including the creation of SSP and POAM artifacts
  • Maintain accurate inventory of technology, processes and people that are required to follow regulations, industry standards, and company policies
  • In collaboration with other internal groups, evaluate complex technologies, systems, processes and controls to identify security risks and compliance gaps; work multi-functionally with partner teams for resolution; handle critical issues and resulting timelines to ensure compliance
  • Investigates and/or leads identifying security needs and recommends plans/resolutions. Implements, tests and monitors info security improvements
  • Support cybersecurity compliance lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication and maintenance
  • Lead security projects driven by groups both internal and external to the cybersecurity organization
  • Mentor peer Analysts, in compliance, regulations, control development lifecycle, enterprise solution design, SDLC, facilitation and effective customer interaction
  • Also responsible for other duties/projects as assigned by business management as needed

Requirements

  • Bachelor's Degree in Computer Science or Information Technology, or equivalent experience
  • 4-7 years' experience in info security technology or related field
  • 2-5 years' experience with IT governance, compliance, risk and audit programs
  • Previous experience with CMMC, NIST 800-171 compliance or similar compliance activities such as SOX, PCI, etc.
  • Experience running internal and/or external regulatory related audits and assessments
  • IT security control development, control testing, risk remediation, and reporting
  • Experience with project management (planning, organizing, and directing resources to bring about the successful completion of specific project goals and objectives)
  • Ability to read, identify and interpret policies, regulations, and contract security requirements
  • Knowledge of IT or Network technologies
  • Previous leadership experience a plus

Nice-to-haves

  • Experience with one or more of the following: MS Office, SIEM, Service Now, Splunk, or Python
  • Knowledge, skills and abilities in Communication, Presentations and Security
  • Remember instructions provided in a variety of formats
  • Think critically
  • Understand/solve Problems
  • Use technology/instruments/tools/information systems
  • Adapt to frequent interruptions, changes in priorities and/or work locations
  • Articulate/Comprehend verbal and written information
  • Work under specific instruction
  • Plan, prioritize, and structure daily activities
  • Interact with others in a manner appropriate to the situation

Benefits

  • Medical, dental and vision insurance
  • Flexible spending account
  • 401(k)
  • Employee stock grants
  • Employee stock purchase plan
  • Paid time off and up to paid 12 holidays
  • Paid parental and family leave
  • Family building benefits
  • Back-up care
  • Enhanced family support
  • Childcare subsidy
  • Tuition assistance
  • College coaching
  • Short and long term disability
  • Voluntary AD&D coverage
  • Voluntary accident coverage
  • Voluntary life insurance
  • Voluntary disability insurance
  • Voluntary long-term care insurance
  • Mobile service & home internet discounts
  • Pet insurance
  • Access to commuter and transit programs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service