Eaton Careers

Information Security Governance, Risk, Compliance Specialist

United States
Information Technology

Apply
English

Job Description

Eaton has an opening for an Information Security GRC Specialist in our Architecture, Governance and Security Center of Excellence (AGSCOE). This role may also work remotely.  The Information Security GRC Specialist will be based at any Eaton facility in the US. No relocation is being offered for this position. If the candidate resides within 50 miles of Beachwood, Ohio, the candidate must work at that site. If the candidate resides more than 50 miles away from Beachwood, Ohio, Candidate will work from a remote home office or another Eaton facility.
 
The Information Security GRC Specialist will provide Information Security leadership, governance, support and consulting services for facilities and functions enterprise-wide. This position will be a key resource in the development and execution of continuous improvements to all aspects of the company’s Information Security program, with a special focus on maintaining Information Security policy, control objectives and standards, as well as leading 3rd party security assessments and customer security assessments.  This role is responsible to design, model, configure, and implement functional software and process solutions to meet desired business requirements; analyze business processes and systems processes & recommend improvements that use standard Eaton software and processes; participate in implementations and third level support as required; and understand and drive regional solutions and implement controls that are fully auditable and compliant with business and control standards.
 
Essential functions include, but are not limited to:
  • Plan for future-state information security policies, control objectives and IT program investments to maintain compliance with regulatory, contractual and internal requirements.
  • Develop, communicate, and deploy information security governance processes
  • Drive the application of emerging information security control objectives to current Eaton environments
  • Lead Information Security governance activities:
    • Annual review and maintenance of Information Security policies, control objectives and standards.
    • Consult with IT and functional management to ensure alignment of Information Security policies, control objectives and standards with regulatory, contractual and internal requirements.
    • Consult with IT and functional management in adapting operational procedures to comply with Information Security policies, control objectives and standards.
    • Consult with IT and functional management to ensure IT project requirements include applicable Information Security policies, control objectives and standards.
    • Lead 3rd party service provider security assessment process.
    • Lead customer security assessment process.
    • Lead efforts to leverage automation and self-service to improve the timeliness of security assessments.
    • Assist resource owners and IT staff in understanding and responding to security audit failures reported by internal and external auditing departments.
    • Consult with Information Security Compliance and Risk teams to maintain scorecards for tracking compliance with Information Security policies, control objectives and standards.
    • Train and mentor other team members to consistently deliver on the goals and objectives of the Information Security governance program.

Qualifications

Basic Qualifications:
  • Bachelor’s Degree from an accredited institution
  • Minimum of 7 years of IT experience
  • Completed minimum of 2 full life-cycle projects
  • Must be legally authorized to work in the United States without company sponsorship
 
Position Criteria:
  • Requires the ability to work on multiple projects of varying scope and scale
  • Requires the ability to handle ambiguous situations and execute upon a direction
 
Preferred Qualifications:
  • Excellent proficiency with the English language (written and verbal). Additional language capabilities are a plus
  • Working knowledge of international, national and industry specific Information Security Frameworks and Standards.

Eaton is a power management company with 2016 sales of $19.7 billion. We provide energy-efficient solutions that help our customers effectively manage electrical, hydraulic and mechanical power more efficiently, safely and sustainably. Eaton is dedicated to improving the quality of life and the environment through the use of power management technologies and services. Eaton has approximately 95,000 employees and sells products to customers in more than 175 countries. For more information, visit Eaton.com. At Eaton we see things differently. We see opportunities to innovate, go above and beyond, and we work hard because what we do reflects who we are. If you see things differently – if you’re determined, motivated and focused on improving the world around you – then it’s time to see where a career at Eaton can take you. For more information visit www. Eaton.com/careers.

Job: Information Technology

Region: North America – US/Puerto Rico
Organization: Corporate Sector

Job Level: Individual Contributor
Schedule: Full-time
Is remote work (i.e. working from home or another Eaton facility) allowed for this position?: Yes
Does this position offer relocation?: No
Travel: Yes, 10 % of the Time

Requisition ID: 038659