(USA) Distinguished, Risk Expert

Position Summary...

What you'll do...

As an Individual Contributor of the Information Security Controls Assurance team, you will play a key role in helping define and execute the methodology and approach in ensuring applications built or implemented in the environment meet appropriate levels of compliance for industry, legal, governmental, risk and safety standards.  Examples of regulatory compliance focus areas include but not limited to Health & Wellness, Food Safety, Alcohol Tobacco and Firearms, Trade/Sanctions, Anti-Corruption, etc. You will collaborate with various business subject matter resources, Governance teams, and Technology teams to achieve our objectives.  You will also contribute to the strategy in how we create and implement automated preventative/detective controls and processes that help us achieve policy compliance.

About Our Team

In an environment where IT-related risks are on the rise and constantly changing, the ability to provide confidence that our regulatory application controls in high-risk compliance areas are operating effectively is paramount.   The Controls Assurance team collaborates with business partners, Governance, and Global Tech teams to ensure applications are properly deployed, monitored, and controlled to meet appropriate levels of compliance for industry, legal, governmental, risk and safety standards.  We also work to create automated preventative and detective controls and processes and implement systematic testing for continuous compliance to provide confidence key application controls are functioning as intended.    

What you'll do...

As a Distinguished Risk Expert, you’ll have the following responsibilities:

• Cultivate strong working relationships with Global Governance stakeholders to ensure alignment on goals and objectives.
• Lead efforts to identify manually intensive regulatory controls for transformation to systematic controls. 
• Ensure the transformed regulatory controls meet established criteria for monitoring.
• Support Global Governance in defining the scope of regulatory systems that necessitate the monitoring of systematic controls or critical system behavior.
• Acquire knowledge about the factors or indicators that classify a regulatory system and related systematic control(s) or critical system behavior as in-scope.
• Develop a framework and methodology for the in-scope regulatory systems that enables the team to comprehend the systematic controls and associated business/IT processes, assess the current state of their environment, and identify potential opportunities for enhancing IT processes and controls to meet our objectives.
• Gather data from various sources to organize and analyse to identify patterns, trends, and insights for in-scope regulatory systems.
• Possess the ability to analyze findings and insights, to prioritize requirements for addressing risks related to the regulatory systems.
• Establish a streamlined process with our Controls Assurance Engineering team for integrating regulatory systems to our continuous monitoring tooling.
• Establish a structured approach and methodology that allows the team to effectively liaise with Technical Teams regarding the resolution of control health anomalies detected in application controls or critical system behavior identified through our monitoring tooling.
• Ability to pinpoint high-risk manual business process controls that require automation within the in-scope regulatory systems, in collaboration with respective business owners.
• Cooperate with Technical Teams to incorporate the required automation identified into their strategic roadmaps.
• Assist in the preparation of reporting to Senior Leaders and Global Governance stakeholders.
• Participate in hiring and building the team to enable them to be high performing process and controls assurance Associates.
• Guide and mentor team members to follow established practices for the delivery of technology assurance services, meeting quality, speed, innovation and create impact.
• Focus on reusability, frameworks, patterns, and tools to maintain speed to market.

What you’ll bring…

• Experience in working with Business Process Owners to understand specific business process risks that are mitigated through application controls or functionality that influences system behavior
• Proven experience in evaluating, designing, and implementing IT processes and controls for IT systems, platforms, and supporting tools
• Familiarity with retail and regulatory compliance systems would be a plus (i.e. Health & Wellness, Financial, Food Safety, etc.)
• Excellent knowledge of data analysis and risk management
• Certified in a relevant risk field is a plus (CISA, CGEIT, CRISC, etc.)
• Strong knowledge of IT regulatory standards and frameworks (COBIT, ISO 27001, ITIL, etc.)
• Methodical and systematic problem-solving approach, combined with a solid awareness of ownership, initiative, and drive
• Ability to work collaboratively across different teams
• Influence Technical Teams to achieve desired objectives
• Excellent leadership skills with the ability to motivate and help develop a team
• Excellent communication skills, both verbal and written

At Walmart, we offer competitive pay as well as performance-based bonus awards and other great benefits for a happier mind, body, and wallet. Health benefits include medical, vision and dental coverage. Financial benefits include 401(k), stock purchase and company-paid life insurance. Paid time off benefits include PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting. Other benefits include short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement, and more.

‎ 

‎ 

‎ 

You will also receive PTO and/or PPTO that can be used for vacation, sick leave, holidays, or other purposes. The amount you receive depends on your job classification and length of employment. It will meet or exceed the requirements of paid sick leave laws, where applicable.

‎ 

For information about PTO, see https://one.walmart.com/notices.

‎ 

‎ 

Live Better U is a Walmart-paid education benefit program for full-time and part-time associates in Walmart and Sam's Club facilities. Programs range from high school completion to bachelor's degrees, including English Language Learning and short-form certificates. Tuition, books, and fees are completely paid for by Walmart.

‎ 

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to a specific plan or program terms.

‎ 

For information about benefits and eligibility, see One.Walmart.

‎ 

The annual salary range for this position is $130,000.00-$260,000.00

‎ 

Additional compensation includes annual or quarterly performance bonuses.

‎ 

Additional compensation for certain positions may also include:

‎ 

‎ 

- Stock

‎ 

‎ 

Minimum Qualifications...

Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.

Option 1: Bachelor's degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 6years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company.

Option 2: 8 years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company.

Preferred Qualifications...

Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.

Certification in Security+, GISF, GSEC, CISA, CISSP, CCSP, or CISM, Master’s degree in Computer Science, Information Technology, Engineering, Information Systems, Cybersecurity, or related area and 4 years’ experience leading information security or cybersecurity projects, We value candidates with a background in creating inclusive digital experiences, demonstrating knowledge in implementing Web Content Accessibility Guidelines (WCAG) 2.2 AA standards, assistive technologies, and integrating digital accessibility seamlessly. The ideal candidate would have knowledge of accessibility best practices and join us as we continue to create accessible products and services following Walmart’s accessibility standards and guidelines for supporting an inclusive culture.

CISA - Certified Information Systems Auditor - Certification, CISSP - Certified Information Systems Security Professional - Certification

Primary Location...

805 Se Moberly Ln, Bentonville, AR 72712, United States of America