The Cybersecurity Risk Management Analyst is responsible for identifying, measuring, reporting and treating cyber risks both internally within NVIDIA and externally with partners, and vendors. This position will work across multiple internal departments to establish and mature the risk assessment process and treatment program. This role will report to the Cyber Risk Program Manager and will actively collaborate with Legal, IT, HR, and Operations functions. This role can be fully remote.

What you'll be doing:

• Implement automation to improve service delivery.

• Develop and manage dashboards that deliver practical metrics.

• Improve our NIST CSF program and deliverables and operationalization efforts.

• Perform qualitative internal risk assessments and manage risk treatment plans and reporting.

• Assist the Information Security team with documenting our security procedures, and other business process mapping notation..

• Provide guidance, and outreach to help teams improve their security posture.

• Maintain the cyber risk registry and report on continual improvement efforts.

• Support with internal/external audits and regulatory requirement efforts.

What we need to see:

• 8+ years of Experience in Information Technology preferably in Cybersecurity.

• Preferably at least 5+ years’ experience in cybersecurity, including governance, 3rd party risk, compliance, and cyber risk management.

• Proven experience applying / assessing against common security and controls frameworks: CMMC, FAIR, NIST CSF, ISO27001.

• Experience with common risk management tools: One Trust, ServiceNow, MetricStream, or similar.

• M.S. Information Security or equivalent experience.

• Experience leading risk assessment processes including risk register, treatment, and reporting.

• Experience (5+ years) performing cyber risk assessments, risk quantification, and risk prioritization.

• Demonstrable experience in establishing and operationalizing security metric and risk reporting programs.

• Experience in a risk lead capacity, providing mentorship and direction to team members on risk and security issues.

Ways to stand out from the crowd:

• CISSP, CISA, CRISC, PMP, ISO27001 certifications.

• Broad understanding of security frameworks and concepts.

• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable.

NVIDIA is widely considered to be one of the technology world’s most desirable employers. We have some of the most forward-thinking and passionate people on the planet working for us. If you're creative and autonomous, we want to hear from you!

The base salary range is 156,000 USD - 264,500 USD. Your base salary will be determined based on your location, experience, and the pay of employees in similar positions.NVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.