Risk & Compliance Manager job in San Francisco, CA| Recruit Arrow
Recruit Arrow
Email Password
Forgot your password?
Welcome, Guest! New User?
Tell a Friend
Success Stories
From my very first contact with Recruit Arrow, through the application process, interviews, and my acceptance of the position, this service was an invaluable asset. My recruiter gave me insight into the company by sharing her own experiences and views.

Job Search


 job title, keywords


 city, state, zip


Your Window to a World of Opportunities

Welcome to Recruit Arrow's Job Center. We offer you the ability to stay current in numerous specialized job markets, including marketing, advertising, and engineering just to name a few, by subscribing to our Newsletter and Real-Time Job Updates; to subscribe click here.

If you do not yet have an account with Recruit Arrow, we encourage you to sign up for a new account by submitting your resume. An account will allow you to make our search consultants aware of the jobs that you are interested in, view new jobs that match your search settings, modify your search settings, submit a new resume, and take advantage of other useful features.

We are pleased that your assessment of options has led you to Recruit Arrow, and we invite you to browse our website to learn more about our firm and the career opportunities we offer. If you would like to be considered for an professional position, feel free to submit your resume.

Select from the options below to begin your search.

(hold down ctrl to choose multiple locations)
City Name:

Primary Field:

Minimum Years of Experience:


1 matches | 1 - 1 displayed 

Risk & Compliance Manager
Location : California, San Francisco
Refer job # NBHI339480
Job Responsibilities and Requirements: Essential Responsibilities: In this role, you will: Responsible for mentoring and growth of direct staff to include skills development, career path management, thought leadership, and performance feedback. Lead team to develop and champion key full-stack vulnerability identification, assessment and treatment procedures to ensure a stable, resilient and secure platform and associated applications and services for GE s customers. Lead team to work with Engineering groups and develop approaches for addressing vulnerabilities, including: application/system patching, deployment of specialized controls, code or infrastructure changes, and changes in development processes. Take ownership of GE Digital Products Responsible Vulnerability Disclosure program and partner with Incident Response team to align on [vulnerability] Rapid Response process. Recommend appropriate policy, standards, process and procedural updates to Engineering teams as part of comprehensive remediation solutions. Direct team in validating remediation by reviewing application updates or deployed mitigations to verify resolution per risk management process. Produce metrics (KPIs, KRIs, etc.) and reporting on the state of vulnerability and patch management across GE Digital products. Design and deliver actionable Information Security dashboards and scorecards. Qualifications/Requirements: Basic Qualifications: Bachelors Degree in Computer Science, Engineering, Information Technology or related field (or 4 years of equivalent working experience) Minimum of 6 years of experience in information security with focus in vulnerability managementEligibility Requirements: Legal authorization to work in the U.S. is required. GE may agree to sponsor an individual for an employment visa now or in the future if there is a shortage of individuals with particular skills. Must be willing to work out of an office located in San Ramon, CA Must be willing to travel (10%) Desired Characteristics: Notable product-focused vulnerability management experience to include patch management and remediation activities in cloud environments using DevOps approach Familiarity with Static\Dynamic Application Security Testing (S\DAST) as well as Open Source SW vulnerability assessment in a CI/CD environment Familiarity with Secure Development Lifecycle or Application Assessments Hands-on experience with automation of system and application level scanning tools Familiarity with development and automation tools such as Jenkins, Git, Rally, ServiceNow CMDB and GRC Experience working with pentesters and ability to interpret security defects to developers/engineers and their leaders Experience with eGRC tools such as Archer, Lockpath, and alike Security related certifications (i.e. CISSP, CEH, CISM, CISA, CSSLP, CCNP) Experience with scripting languages (Python, Ruby, Perl) and BI tools (Tableau, SiSense) Good analytical skills, attention to detail and ability to methodically troubleshoot complex issues Good analytical and negotiation skills Good communication and presentations skills.
[Apply Now] [Email to a Colleague] [Permalink]

This particular job is currently not active. However, since our clients regularly share with us similar and other job openings, we strongly recommend that you submit your resume. We shall review your resume and get in touch with you as soon as a suitable vacancy comes up to further discuss your interest in exploring the opportunity.Assisting you is our highest priority.

Please be assured that none of your materials will be forwarded to any employer without your consent. Of course, all inquiries are kept strictly confidential.

1 matches | 1 - 1 displayed 
Newsletter and Job Updates