Demo
Salary Resume Critique Job Openings

Principal, Information Security

Mediabarn
Vienna, VA Full Time
POSTED ON 4/18/2025
AVAILABLE BEFORE 5/15/2025

Job Description

Job Description

Description :

The Principal, Information Security Governance & Risk Management supports Information Security Division in effectively managing the Enterprise’s Information Security risks and overall program. Responsible for the strategy, management and the overall execution of first line of defense information security risk management and governance activities at the enterprise. This role will collaborate with business unit senior leaders across the enterprise to identify, mitigate and manage information security risks. Uses extensive industry and real world experience to lead information security governance and risk management activities, developing pragmatic solutions to address gaps in line with established risk appetites. Ensure information security governance and risk management activities align with strategic business initiatives, achieve business and quality objectives, mitigate risk and enhance operating procedures. Develop dashboards, metrics and reporting data to provide consultative guidance during monthly and quarterly governance committees. Promote operational efficiency and service excellence through appropriate risk controls, process improvements and training while reducing and mitigating financial losses.

Responsibilities :

  • Lead the Information Security Program Risk Assessment.
  • Develop and lead a comprehensive Information Security Program Maturity Assessment and Risk Assessment initiatives in line with the enterprise goals and regulatory expectations.
  • Ensure the effective identification, mitigation and management of information security risks arising from business activities. In addition, provide guidance and advice to senior management on the status of their control environment related to standards compliance, risk identification and control issues. Identify critical areas to monitor and escalate issues and findings to appropriate

stakeholders and governance committees.

  • As applicable, articulate implications of risks and issues related to data management and protection to sponsors and risk owners and, if necessary, assist with security exceptions or issue management
  • Translate control deficiencies into action plans and provide recommendations to enhance

    • governance practices in alignment with risk and compliance frameworks.

  • Participate in Security-related special projects, councils, working groups, etc. as a Risk SME
  • Perform other duties as assigned

    • Requirements

  • Bachelor's degree in Information Systems, Computer Science, Engineering, Business, Mathematics, Economics, or related field, or the equivalent combination of education, training and experience
  • A minimum of 12-15 years of experience leading risk and / or compliance related activities in

    • financial services or other relevant industry, especially Operational Risk Programs

  • Deep knowledge and practical experience implementing NIST CSF in a medium to large financial institution.
  • Extensive knowledge of industry leading risk management frameworks such as COSO, COBIT, NIST CSF, ITIL)
  • Working knowledge of the MITRE attack framework
  • Extensive experience in the development of risk management frameworks along with the requisite implementation
  • Advanced knowledge of information technology systems, project processes, and application

    • development

  • Advanced organizational, planning and time management skills
  • Advanced research, analytical, and problem solving skills
  • Advanced skill developing and implementing programs in a leadership role
  • Advanced skill building effective relationships with all levels of staff, management, stakeholders, and vendors, through rapport, trust, diplomacy and tact
  • Advanced verbal, written, interpersonal, and presentation skills to communicate clearly and

    • concisely technical and non-technical information to all levels of management and a strong EQ

  • Effective skill to influence, negotiate and persuade to reach agreeable exchange and positive

    • outcomes

  • Advanced skill exercising initiative and using good judgment to make sound decisions

    • Preferred :

  • Prior experience developing, implementing, and or assessing an information security program for a medium to large financial institution.
  • Prior experience implementing and / or assessing NIST Cybersecurity Framework (CSF) in a medium to large financial institution.
  • Graduate education in Business, Cyber / Information Security Risk, Information Systems, Computer Science, Engineering, Quantitative discipline or related field
  • Professional certifications including, but not limited to any of the following : FRM, PRM, CISA, CISM, CISSP, CGEIT, CRISC, CFE, CPA, CIA, CIPP, ISA, AWS and etc.
  • Professional or planned date for certification in Operational Risk, and / or specialized in Technology or Information Security
  • Local candidates able to work Hybrid only.
  • No 3rd Party Recruiters please.
  • Our client will only accept the following : US Citizens, Green Card Holders, TN Visa, Green Card EAD's. Candidates cannot be on a sponsored work Visa.

    • If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Principal, Information Security?

    Sign up to receive alerts about other jobs on the Principal, Information Security career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $164,835 - $201,088
    Income Estimation: 
    $102,189 - $143,024
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $164,835 - $201,088
    Income Estimation: 
    $102,189 - $143,024
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $152,549 - $188,894
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $164,835 - $201,088
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Mediabarn

    UX Designer (Design Systems) Job at Mediabarn in Vienna
    Mediabarn
    Hired Organization Address Vienna, VA Full Time
    Job Description Job Description Position Overview : We are seeking a highly skilled and motivated Design Systems Lead to...
    UX Designer (Design Systems)
    Mediabarn
    Hired Organization Address Vienna, VA Full Time
    Job Description Job Description Position Overview : We are seeking a highly skilled and motivated Design Systems Lead to...
    View More Jobs at Mediabarn

    Not the job you're looking for? Here are some other Principal, Information Security jobs in the Vienna, VA area that may be a better fit.

    Principal Information Security Architect

    Lumen Inc, Washington, DC

    Principal Information System Security Officer

    Steampunk, Mc Lean, VA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!