The latest news
Re-Uniqlo is new recycling project from Fast Retailing
Textiles Minister disbands AIHB, registers products with ‘India Handloom Brand’
GJEPC to hold first Plain Gold Jewellery Virtual Buyer Seller Meet
Gold jewellery retailers face negative credit outlook, fewer store openings: CRISIL
Bajaj Consumer Care partners with Indiamart to strengthen digital presence
Myntra looks to tap new customers by partnering with Chennai Super Kings
Malabar Gold to enter Bihar, plans to triple showrooms in five years across India
Tom Ford climaxes New York Fashion Week with Flower Power elegance
H&M splits from Chinese supplier following Uyghur forced labour accusations
Hard-edged, performance-art chic by Burberry opens London Fashion Week
U.S. investors set to own majority stake in TikTok Global - source
White to celebrate Made in Italy and sustainability in 300-brand salon
Italian leather goods, footwear sectors post dire H1 results
LVMH, Tiffany wrangle over court dates after acquisition turns sour
Raf Simons to show debut signature women’s collections on October 23
ABFRL's Jaypore partners with Creative Dignity to promote artisans online
The Moms Co raises $8 million in funding, plans expansion
Seven to be Chennai Super Kings official apparel partner for IPL 2020
Shoexpress partners with Myntra to enter Indian market
Fastrack launches line of audio-sunglasses on Amazon
Titan partners with SBI to launch contactless payment watch
Apple kicks off critical holiday season with watch that monitors blood oxygen
Text size
aA+ aA-
Click here to print

Expert Governance Analyst, India – Cis Icc

Country : India

Region : Karnataka

Town : Bengaluru

Category : Retail

Contract type : Permanent

Availability : Full time

Job description

Nike's Corporate Information Security Governance, Risk, and Compliance (GRC) team is responsible for enterprise wide GRC ensuring Nike leadership has the information needed to make strategic risk-based decisions and maintain compliance with international regulations while enabling the achievement of Nike business objectives globally.
You must be passionate about GRC, as you'll need a good working knowledge of industry best practice frameworks, such as ISO, NIST and CoBIT. You will regularly meet with business and technology teams across Nike to consult with them on their security and compliance requirements. You will work cross-functionally within the Corporate Information Security (CIS) teams and across Nike.
To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has clearly demonstrated skills and experience, since your responsibilities will include, but not be limited to:
* Help ensure that audit findings have appropriate remediation, key processes are designed and operating effectively, and effective handoffs exist between CIS functions. Provide expert-level process consulting and evaluation with recommendations for improvements to drive maturity in key functional areas.
* Drive Nike's compliance control validation testing program by developing testing procedures, being accountable for deliverables, allocating work to team members, and driving remediation of control gaps.
* Perform detailed analysis of threats and vulnerabilities in all areas of information security including network security, asset security, security engineering, identity and access management, security operations and software development security. This also includes reviewing key system configurations and complex IT infrastructures (e.g. cloud services).
* Utilize your thorough understanding of ITGC's to consult with and lead Technology units on compliance matters.
* Champion information security policies, standards, controls, and processes so that compliance requirements are addressed as part of "business as usual" operations.
* Help lead overall Nike control design and control operations related in support of compliance requirements.
* Assess current platforms against Nike security and configuration standards.
* Evaluate and process exceptions to information security policies and standards.
* Provide analysis and insights into data supporting the effectiveness of technical and process-based cyber security controls and establish automated data pipelines that feed data visualization tools, such as Tableau.
* Collaborate effectively with NIKE leaders, managers, employees, and partners to provide deliberate and thoughtful engagement throughout NIKE.
* Effective, positive verbal and written communication skills and experienced creating and developing high-quality PowerPoint presentations.


What We're Looking For:
To make it clear, we're not looking for just anyone. We're looking for someone special, someone who had these experiences and clearly demonstrated these skills:
* Knowledge of information security principles and practices, general procedures and guidelines.
* A general understanding of technology use, trends and risks as it applies in a business context and environment.
* Experience reviewing third party SOC reports.
* Experience/working knowledge with PCI DSS (Former QSA is a benefit).
* Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000).
* Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to others within Nike, Inc. both at WHQ and globally.
* Experience with ServiceNow, Confluence or JIRA.
Click here to print

Website reserved for fashion, luxury and beauty industry professionals.