Manager – Training Governance for Cyber Security

Job Description:

Position Overview

The primary responsibility of the Manager – Cyber Security Training & Governance is to manage the end-to-end processes for ISO 27001 and 27017 audit preparation and implementation, cyber data governance, risk assessments, and cyber policy/standards/standard operating procedures development.

All duties are to be performed in accordance with departmental and Las Vegas Sands Corp.’s policies, practices, and procedures. All Las Vegas Sands Corp. Team Members are expected to conduct and carry themselves in a professional manner at all times. Team Members are required to observe the Company’s standards, work requirements and rules of conduct.   

Essential Duties & Responsibilities

• This Manager – Cyber Security Training and Governance is expected to manage multiple projects and/or manager(s) within the areas of at least one of the following:

  • Cyber governance, risk and verification which performs risk assessments, system security including listing controls, gaps in implemented controls and tracking remediation of gaps, and provides input to the risk register.

  • ISO audit preparation including gathering evidence, working with Internal Interested Parties, scheduling meetings and participating in the audits.

  • Cyber policy/standard and standard operating procedure creation, review, distribution, and maintenance.

• Safety is an essential function of this job.

• Consistent and regular attendance is an essential function of this job.

• Performs other related duties as assigned.

Minimum Qualifications

• At least 21 years of age.

• Proof of authorization to work in the United States.

• Bachelor’s degree computer science or cyber security preferred or equivalent work experience.

• Must be able to obtain and maintain any certification or license, as required by law or policy.

• Must have ISO 27001 or other ISO framework Implementer or auditor certification in good standing or equivalent work experience. 

• 3+ years audit experience as either participant or auditor.

• 2+ years cyber or IT experience or ability to demonstrate familiarity with technical terminology, tools, and processes.

• Demonstrated management experience in at least one area in the following list:

  • ISO Audit

  • Cyber Governance, Risk and Verification

  • Cyber Policy/Standard/Standard Operating Procedures

  • Cyber Policy/Standard/Standard Operating Procedures

• Working knowledge of threats and vulnerabilities and their significance to cyber risk.

• Strong interpersonal skills with the ability to communicate effectively with guests and other Team Members of different backgrounds and levels of experience.

• Must be able to work varied shifts, including nights, weekends and holidays.

Physical Requirements

Must be able to:

• Physically access assigned workspace areas with or without reasonable accommodation.

• Maintain composure under pressure and consistently meet deadlines with internal and external customers and contacts.

• Work remotely as necessary.

• Work in a fast-paced and busy environment.

• Utilize laptop and standard keyboard to perform essential functions of the job.