Business Continuity and Security Controls Coordinator

The Risk Strategies Cyber Security team is responsible for monitoring/assessing security risk, establishing security standards, and ensuring compliance against those standards across all disciplines of the information security domain. The RSC team is looking for a tactical coordinator to join the team who will be responsible for strategic transformational shifts in the maturity of the security control environment; and establishing best practices for Business Continuity (BC) to ensure continued operations and delivery of the service. Key transformation changes that this role will be responsible for driving include the shift to scalable processes and technology both within our team and processes supporting Compliance, Risk, Governance (GRC) including: the implementation of program management best practices for Business Continuity, move to service management delivery and tracking for GRC, automation of controls, monitoring, and evidence collection, and operational excellence for BC and Disaster Recovery (DR) best practices. The role will partner with leaders across the enterprise focusing on security, technology, and within risk and compliance.

This role has a strong emphasis on strategy and influence while also requiring strong operational and execution skills to deliver the strategy. The coordinator should be comfortable addressing a complex portfolio of programs with a wide breadth of stakeholders. The coordinator should also allow for this role should have a focus on scalable operations due to the growth of Risk Strategies.

Primary Responsibilities & Duties:

• Assists manager in providing for the safekeeping and integrity of the company’s information assets by maintaining BCP that ensure that the company can respond to business interruptions and critical business functions can be resumed within a defined timeframe.
• Conducts business impact analysis and assists company units to determine critical business processes, identifies acceptable recovery time periods and establishes business resources required for the successful resumption of business operations in the event of a disruption.
• Ensuring all personnel with specific BC responsibilities are adequately trained to fulfill those responsibilities. Ensuring all employees are familiar with the relevant provisions of the BC plans.
• Coordinating routine updates to the detailed information supporting the BC procedures (e.g. contact lists, personnel assignments, hardware and software specifications, network diagrams, vital records inventory lists, off-site backup schedules, etc.).
• Coordinating electronic access to, and hard copy distribution of, the BC/DR plans and procedures. Protecting the confidentiality, integrity and availability of the BC plans and procedures.
• Ensuring that all technical components of the BC/DR plans are successfully tested at least annually, or whenever significant changes are made to those components. Planning and coordinating at least one simulation exercise a year, involving all critical business units. Documenting the results of all tests and exercises and identifying any recommended enhancements to the BC/DR plans and procedures.