• Job Description

  Req#: R-68795

  Job Description:

  This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

  Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability, and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future—you’ll be a part of creating it.

  As Technology Risk Senior Cyber Risk and Controls Identification and Assessment, you will be responsible for providing independent oversight of the company’s enterprise-wide cybersecurity control functions in accordance with the Technology Risk Program. Increasing levels of risk and regulatory requirements demand additional risk management rigor, and we must implement highly resilient, reliable, and effective solutions that meet and, in some cases, exceed performance standards found in other information-rich industries. You will provide leadership and support for Technology Risk initiatives across the business and advocate for best practices, while incorporating an independent oversight lens. You will utilize risk-based management to integrate information and technology risk processes into the way AT&T operates. This is not a supervisory position.

  Reporting to the Associate Director of Cyber Risk Management, you will be responsible for identifying, assessing, responding to, and monitoring risks pertaining to information security. You will ensure that regulatory/risk policies and standards and their impact on business operations are understood and addressed consistently across AT&T. Your focus will be on risk and controls identification and assessment, including evaluating the control environment, supporting maturity assessments, and analyzing emerging risks. You will develop and deliver reports on risk and control assessments to senior management and engage with stakeholders to ensure alignment and effective communication regarding risk management efforts. Additionally, you will help to provide coverage for regulatory issues with our global technology partners and assist with regulatory exams, requests, and meetings.

  Responsibilities:

  • Drive efforts around Risk and Controls Identification and Assessment in line with the Technology Risk Management program.

  • Partner with and advise key stakeholders across technology, business, and risk partners to identify, assess, and monitor key risks in order to keep AT&T and our customers safe and resilient.

  • Assess the control environment to ensure controls are effective and identify areas for improvement.

  • Support maturity assessments to gauge the robustness of the control environment and recommend enhancements.

  • Research and analyze emerging risks and provide recommendations for mitigation.

  • Develop and deliver reports on risk and control assessments to senior management.

  • Support Tech Risk teams responsible for risk monitoring, periodic controls testing, evidence collection, and audit readiness efforts.

  • Support with escalation of high-risk observations to executive leadership.

  Qualifications:

  • Requires Daily Office Presence at one of the listed locations. No relocation assistance is provided.

  • Preferred Bachelor's degree in Information Systems, Engineering, Cyber Security, or a related field.

  • 3-5 years of work experience in technology, operational risk management, or a related discipline at a global company.

  • Significant (3-5 years) experience in multiple industry risk, control, and governance disciplines (e.g., Audit, Information Security, Regulatory Compliance).

  • Strong experience in Information security risk and cybersecurity control capabilities with extensive knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g., ISO, COSO, COBIT, NIST) as well as knowledge of compliance, legal, internal/external audit, and regulatory requirements.

  • Experience designing, implementing, and sustaining programs that effectively manage risk throughout the risk management lifecycle, including:

  • Strategic technology risk advisory.

  • Controls assessment, identification, and development.

  • Risk and controls identification, including emerging risks and controls.

  • Maturity and risk assessment, scenario analysis.

  • Risk response, mainly remediation.

  • Risk monitoring.

  • Policy and committee governance.

  • Demonstrated success in assessing and improving control environments.

  • Ability to weigh business needs against risk concerns and effectively articulate issues to different audiences.

  • Understanding of metrics development and reporting. Strong problem-solving and program execution skills.

  • Ability to prioritize and drive difficult decisions among business partners. Strong client relationship management experience, communication, and influencing skills.

  • Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels.

  • Experience developing and delivering presentations to all levels of management.

  • Strong ability to develop, lead, and manage a professional staff.

  Supervisory:

  No.

  Our Technology Risk Senior Cyber Risk and Controls Identification and Assessment earns between $116,700-$175,100 USD Annual, not to mentions all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

  Joining our team comes with amazing perks and benefits:

  • Medical/Dental/Vision coverage

  • 401(k) plan

  • Tuition reimbursement program

  • Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)

  • Paid Parental Leave

  • Paid Caregiver Leave

  • Additional sick leave beyond what state and local law require may be available but is unprotected.

  • Adoption Reimbursement

  • Disability Benefits (short term and long term)

  • Life and Accidental Death Insurance

  • Supplemental benefit programs: critical illness/accident hospital indemnity/group legal

  • Employee Assistance Programs (EAP)

  • Extensive employee wellness programs

  • Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone.

  #LI-Onsite – Full-time office role-

  AT&T is leading the way to the future – for customers, businesses, and the industry. We're developing new technologies to make it easier for our customers to stay connected to their world. Together, we’ve built a premier integrated communications and entertainment company and an amazing place to work and grow. Team up with industry innovators every time you walk into work, creating the world you always imagined.

  Apply now!

  Weekly Hours:

  40

  Time Type:

  Regular

  Location:

  USA:NC:Charlotte / Research Dr - Dat:9139 Research Dr

  Salary Range:

  $116,700.00 - $175,100.00

  It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.

• About the company

  AT&T Inc. is an American multinational conglomerate holding company, Delaware-registered but headquartered at Whitacre Tower in Downtown Dallas, Texas.

Notice