Information Security Team Lead


Apply Now

Overview


Lead a team focused on building the Risk Management Framework (RMF) program across the company and support the various lines of business to ensure our compliance to the laws, regulations, and contractual obligations. This collaborative team operates cross-divisionally throughout Esri and helps identify risks and develop mitigation strategies to help ensure the success of the business.

Responsibilities


  • Stay informed of pending industry changes, trends and best practices and assess the potential impact of these changes on organizational information security policies, procedures, and processes
  • Lead RMF related activities such as the coordination of internal and external audits, POAM management efforts, and staying up to date with new and existing customer and regulatory requirements
  • Work with our legal and contracts teams to address security requirements from our customers and to ensure our vendors are complying with Esri security requirements
  • Partnering with the enclave architect to provide leadership and oversight for all aspects of the EsriTech enclave
  • Help improve our processes related to security reviews, assessments, and risk management
  • Successfully set priorities, perform tasks in an orderly fashion, and meet time deadlines
  • Monitor and track the progress and status of the remediation actions and escalate any issues or delays
  • Assist in the development and implementation of Esri’s GRC framework, policies, and procedures
  • Conduct risk assessments and audits to evaluate the effectiveness of the company's internal controls and compliance with applicable laws, regulations, policies, and standards
  • Help improve our processes related to security reviews, assessments and risk management
  • Proactively communicate and collaborate with other teams/divisions to promote shared objectives
  • Ensure timely and high-quality work from your team
  • Develop working relationships with peers and senior management across the company to effectively establish a sustainable operating model
  • Provide direct supervision as you lead and mentor your team

Requirements


  • A keen interest in learning and developing skills and understanding in the IT security and system management spaces is necessary to foster the communications and relationships central to this role
  • 5+ years of work experience in cyber security and/or leadership or management in a technical field
  • Strong interpersonal and communication skills to work effectively with IT and business units; ability to bridge communications between technical IT team members and compliance team members
  • Strong attention to detail, customer orientation, communication, and presentation skills including the ability to list and quickly translate business needs into solutions and build effective working relationships
  • Strong, self-motivated, and productive team player with ability to thrive in a dynamic environment
  • Proven experience driving consensus across multiple stakeholders at all levels of the organization
  • Effectively engage business and technical stakeholders at the tactical, day-to-day level, balanced with strategic planning at executive levels
  • Solid understanding and experience with Agile
  • US citizenship and ability and willingness to obtain a security clearance

Recommended Qualifications


  • Experience influencing without authority, managing ambiguity, and balancing competing goals and objectives.
  • CRISC or CISSP certification

#LI-NR5

#LI-Hybrid

Total Rewards

Esri’s competitive total rewards strategy includes industry-leading health and welfare benefits: medical, dental, vision, basic and supplemental life insurance for employees (and their families), 401(k) and profit-sharing programs, minimum accrual of 80 hours of vacation leave, twelve paid holidays throughout the calendar year, and opportunities for personal and professional growth. Base salary is one component of our total rewards strategy. Compensation decisions and the base range for this role take into account many factors including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

A reasonable estimate of the base salary range is
$87,360-$168,480 USD

About Esri


At Esri, diversity is more than just a word on a map. When employees of different experiences, perspectives, backgrounds, and cultures come together, we are more innovative and ultimately a better place to work. We believe in having a diverse workforce that is unified under our mission of creating positive global change. We understand that diversity, equity, and inclusion is not a destination but an ongoing process. We are committed to the continuation of learning, growing, and changing our workplace so every employee can contribute to their life’s best work. Our commitment to these principles extends to the global communities we serve by creating positive change with GIS technology. For more information on Esri’s Racial Equity and Social Justice initiatives, please visit our website here.

If you don’t meet all of the preferred qualifications for this position, we encourage you to still apply!

Esri is an equal opportunity employer (EOE) and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need reasonable accommodation for any part of the employment process, please email askcareers@esri.com and let us know the nature of your request and your contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

Esri Privacy Esri takes our responsibility to protect your privacy seriously. We are committed to respecting your privacy by providing transparency in how we acquire and use your information, giving you control of your information and preferences, and holding ourselves to the highest national and international standards, including CCPA and GDPR compliance.