(Ind) Principal, Risk Expert

Position Summary...

What you'll do...

Job Summary 

As an Individual Contributor of the Information Security Controls Assurance team, you will play a key role in leading the execution of our methodology and approach in ensuring applications built or implemented in the environment meet appropriate levels of compliance for industry, legal, governmental, risk and safety standards.  Examples of regulatory compliance focus areas include but not limited to Health & Wellness, Food Safety, Alcohol Tobacco and Firearms, Trade/Sanctions, Anti-Corruption, etc. You will collaborate with various business subject matter resources, Governance teams, and Technology teams to achieve our objectives.  You will also lead in executing our strategy in how we create and implement automated preventative/detective controls and processes that help us achieve policy compliance.   

About Our Team 

In an environment where IT-related risks are on the rise and constantly changing, the ability to provide confidence that our regulatory application controls in high-risk compliance areas are operating effectively is paramount.   The Controls Assurance team collaborates with business partners, Governance, and Global Tech teams to ensure applications are properly deployed, monitored, and controlled to meet appropriate levels of compliance for industry, legal, governmental, risk and safety standards.  We also work to create automated preventative and detective controls and processes and implement systematic testing for continuous compliance to provide confidence key application controls are functioning as intended.     

 

 

What you'll do... 

As a Principal Risk Expert, you’ll have the following responsibilities: 

 

• Assist in ensuring our goals and objectives align with those of Global Governance stakeholders and are executed accordingly. 
• Collaborate in efforts to identify manually intensive regulatory controls for transformation to systematic controls 
• Provide assurance the transformed regulatory controls meet established criteria for monitoring. 
• Support key stakeholders in identifying new or changed scope of regulatory systems that necessitate the monitoring of systematic controls or critical system behavior. 
• Lead the execution of methodology for the in-scope regulatory systems enabling the team to understand the systematic controls and associated business/IT processes, assess the current state of their environment, and identify potential opportunities for enhancing IT processes and controls to meet our objectives. 
• Lead the process of collecting data from diverse sources, organizing and analyzing it to detect patterns, trends, and insights for in-scope regulatory systems. 
• Analyze findings and insights, to prioritize requirements for addressing risks related to the regulatory systems. 
• Take the lead in the collaboration with our Controls Assurance Engineering team to integrate regulatory systems to our continuous monitoring tooling. 
• Ensure the team consistently implements the methodology for effective collaboration with Technical Teams in resolving control health anomalies detected in systematic controls or critical system behavior as identified through our monitoring tools. 
• Ability to pinpoint high-risk manual business process controls that require automation within the in-scope regulatory systems, in collaboration with respective business owners. 
• Participate in building the team to enable them to be high performing process and controls assurance Associates. 
• Guide and mentor team members to follow established practices for the delivery of technology assurance services, meeting quality, speed, innovation and create impact. 

 

What you’ll bring… 

• Experience in working with Business Process Owners to understand specific business process risks that are mitigated through application controls or functionality that influences system behavior 
• Strong experience in evaluating, designing, and implementing IT processes and controls for IT systems, platforms, and supporting tools 
• Familiarity with retail and regulatory compliance systems would be a plus (i.e. Health & Wellness, Financial, Food Safety, etc.) 
• Knowledge of data analysis and risk management 
• Certified in a relevant risk field is a plus (CISA, CGEIT, CRISC, etc.) 
• Good understanding of IT regulatory standards and frameworks (COBIT, ISO 27001, ITIL, etc.) 
• Methodical and systematic problem-solving approach, combined with a solid awareness of ownership, initiative, and drive 
• Ability to work collaboratively across different teams  
• Influence Technical Teams to achieve desired objectives 
• Ability to motivate and help develop a team 
• Excellent communication skills, both verbal and written 

About Walmart Global Tech
Imagine working in an environment where one line of code can make life easier for hundreds of millions of people.  That’s what we do at Walmart Global Tech. We’re a team of software engineers, data scientists, cybersecurity expert's and service professionals within the world’s leading retailer who make an epic impact and are at the forefront of the next retail disruption. People are why we innovate, and people power our innovations. We are people-led and tech-empowered.

We train our team in the skillsets of the future and bring in experts like you to help us grow. We have roles for those chasing their first opportunity as well as those looking for the opportunity that will define their career. Here, you can kickstart a great career in tech, gain new skills and experience for virtually every industry, or leverage your expertise to innovate at scale, impact millions and reimagine the future of retail.

Flexible, hybrid work
We use a hybrid way of working with primary in office presence coupled with an optimal mix of virtual presence. We use our campuses to collaborate and be together in person, as business needs require and for development and networking opportunities. This approach helps us make quicker decisions, remove location barriers across our global team, be more flexible in our personal lives.

Benefits

Beyond our great compensation package, you can receive incentive awards for your performance. Other great perks include a host of best-in-class benefits maternity and parental leave, PTO, health benefits, and much more.

Belonging

We aim to create a culture where every associate feels valued for who they are, rooted in respect for the individual. Our goal is to foster a sense of belonging, to create opportunities for all our associates, customers and suppliers, and to be a Walmart for everyone.

At Walmart, our vision is "everyone included." By fostering a workplace culture where everyone is—and feels—included, everyone wins. Our associates and customers reflect the makeup of all 19 countries where we operate. By making Walmart a welcoming place where all people feel like they belong, we’re able to engage associates, strengthen our business, improve our ability to serve customers, and support the communities where we operate.

Equal Opportunity Employer

Walmart, Inc., is an Equal Opportunities Employer – By Choice. We believe we are best equipped to help our associates, customers and the communities we serve live better when we really know them. That means understanding, respecting and valuing unique styles, experiences, identities, ideas and opinions – while being inclusive of

Minimum Qualifications...

Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.

Option 1: Bachelor's degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 5years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company. Option 2: 7 years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company.

Preferred Qualifications...

Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.

Certification in Security+, GISF, GSEC, CISA, CISSP, CCSP, or CISM, Master’s degree in computer science, information technology, engineering, information systems, cybersecurity or related area and 3 years’ experience leading information security or cybersecurity projects

Primary Location...

G, 1, 3, 4, 5 Floor, Building 11, Sez, Cessna Business Park, Kadubeesanahalli Village, Varthur Hobli , India