Information Security Risk Analyst III

About Fujitsu Network Communications, Inc.

Join us, Fujitsu wants innovators like you! Fujitsu Network Communications, Inc. is part of the global Fujitsu group of technology companies. We’re bringing the power of Digital Transformation (DX) to the network operators, communications service providers, and internet content providers that keep the world connected. We combine 30-plus years of expertise in multivendor network technology with customer service excellence and best-in-class network hardware, software, and services as we design, build, operate, and maintain the critical infrastructure for wireless and wireline communications. The Fujitsu group is committed to doing the right thing, as well as to supporting the communities where we do business. We’re also a diverse, inclusive, and innovative workplace that achieves together.  We offer highly competitive compensation, benefits, and career development opportunities, as well as flexible options for working your way.  See what working at Fujitsu looks like at https://www.linkedin.com/company/fujitsu/life/americas/.  For more information, please visit http://us.fujitsu.com/telecom.

Req ID:16240 

The Information Security Risk Analyst will be responsible for promoting proper risk analysis for Fujitsu companies around the world, and assisting these Fujitsu companies to complete relevant risk assessments.  Fujitsu's Information Security Risk Management program is based on the NIST Risk Management Framework, and is built to ensure a consistent process across all Fujitsu companies.  This position will provide an excellent opportunity for a candidate to interact with a global team in a large, international organization, learning about the risks we must manage, and making a difference within the company.

Specific responsibilities for this role include:

• Understanding Risk Management standards, both at Fujitsu and within the industry
• Clearly communicating requirements related to RM
• Developing relevant training and presentations
• Training system owners and system administrators on how to perform a risk assessment
• Validating risk assessment completion, and vetting for thoroughness and consistency
• Tracking action items related remediation activities for identified risks
• Creating status reports to notify management of program and project status

Required Experience and Skills

• Familiarity with NIST Risk Management Framework
• Demonstrated experience performing formal or informal audits against industry security standards (for example, NIST CSF), or responding to such audits.  Minimum of three years performing this function.
• Detail-oriented, able to concurrently track action items from a wide variety of organizational units
• Ability to clearly communicate audit results to all levels of the organization, including deficiencies and remediation requirements
• Passion for staying abreast of industry trends 
• Minimum of 4 combined years in the following functions:
  • Information Technology
  • Cybersecurity  
  • Audit
• Excellent written communication skills, with the ability to clearly communicate expectations to other personnel
• Additional preferred capabilities and experience include
  • Audit or Security Certifications are desirable (e.g., ISO 27001 Lead Auditor or CISSP)

At Fujitsu, one of our corporate principles is "We respect human rights." This principle underpins our corporate and individual activities and guides the actions of every Fujitsu Group member. We embrace diversity and equal opportunity. Qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.  By empowering people, we can unleash our collective strengths to create a better experience for our employees, our customers, and our partners.

California Privacy Act: https://www.fujitsu.com/us/Images/CALIFORNIA-CONSUMER-PRIVACY-ACT-NOTICE.pdf