Are you ready to make a difference in the world of wireless security? Then come join the T-Mobile team as a Principal Analyst, Enterprise Info Security!
The Principal Analyst will...
Be instrumental in enabling T-Mobile's security compliance to various regulations such as PCI (Payment Card Industry), CPNI (Customer Proprietary Network Information for FCC), HIPAA (Health Information Protection & Portability Act for HHS), NY DFS (New York Department of Financial Services) and others!
Share expertise and guidance across the enterprise on regulations, industry security and compliance requirements, and best practices to ensure systems, processes, and technology maintain compliance; assess compliance risk and create appropriate remediation plans to effectively comply with controls; and conduct or assist with regular compliance reviews and assessments.
Build strong working relationships and partnerships within own organization and across technology and business teams; effectively communicate to all levels at T-Mobile the status, risks, and issues associated with the compliance program.
Develop and drive compliance strategy and roadmap; provide recommendations for new projects or initiatives to meet strategy.
What you'll do in your role.
Main Responsibilities:
Enable compliance to various regulations, industry standards, and company policies
Consult and advise business and partners on security requirements related to regulations, industry standards, and company policies for new and existing initiatives to maintain compliance
Maintain accurate inventory of technology, processes and people that are required to comply with regulations, industry standards, and company policies
Develop and test formal security controls
Evaluate complex technologies, systems, processes and controls to identify security risks and compliance gaps; work collaboratively with partner teams for resolution; manage escalations and resulting timelines to ensure compliance
Lead and/or participate in security reviews, assessments, and/or certifications
Lead strategic key initiatives that take a proactive approach to cybersecurity compliance
Manage or support the budget for assigned projects and initiatives
Collaborate with cross-functional teams and develop strong partner relationships
Actively engage and work with key stakeholder teams to drive strategy that supports T-Mobile's ongoing compliance (technologies, designs, remediation, planning and other related efforts)
Management, progress tracking, and reporting of the related respective tasks
Manage assigned vendor relationships and resolution of stakeholder issues
Create detailed documentation for the supported compliance programs
Consult with management on compliance strategy and goals
The experience you'll bring.
Desired Qualifications:
7+ years experience in Information Technology (IT), IT Security
5+ years experience across relevant technology and security areas including but not limited to network security, network administration, system architecture and administration, security tools, and application security
Experience with IT governance, compliance, risk, and audit programs
Experience managing internal and/or external regulatory related audits and assessments
Experience with project management (planning, organizing, and managing resources to bring about the successful completion of specific project goals and objectives)
Ability to interface with partners from network, technology, business, and legal organizations and provide consulting in various IT Security areas relevant to regulations
Ability to obtain and maintain PCI ISA (Information Security Assessor) certification
Ability to read, identify and interpret policies, regulations, and contract security requirements
Ability to manage multiple projects and activities simultaneously
Ability to identify problems, analyze data and present conclusions effectively
Strong verbal, written and collaboration skills
Certification in one of the following: CIPP, CIPM, CIPT, CISSP
*LI-KM3
Minimum Requirements:
Computer Science, Information Technology, or related field from an accredited 4-year college or university, or related work experience
Knowledge of GRC (Governance, Risk, Compliance)
At least 18 years of age
Legally authorized to work in the United States
High School Diploma or GED
T-Mobile requires all employees in this position to be fully vaccinated for COVID-19 prior to starting work, unless precluded from doing so by applicable law. The CDC currently defines -fully vaccinated- as two weeks after the second dose for Pfizer and Moderna, and two weeks after the single dose of Johnson & Johnson. T-Mobile will require proof of vaccination prior to successful applicant's first day of work, and will consider requests for exemption from this requirement during the offer phase (1) as a reasonable accommodation for medical reasons or sincerely held religious beliefs where the accommodation would not cause T-Mobile undue hardship or pose a direct threat to the health and safety of others, or (2) for other reasons under applicable law.
Position details
Req ID: 190847BR
Department: Engineering
Travel Required: No
