Gartner Sr Director, Cyber Security Risk Management in Irving, Texas

Sr Director, Cyber Security Risk Management

Irving, TXRegular Full-time

Apply nowJob Description:

Primary Responsibilities:

  • Manages Gartner’s governance strategy as it relates to policies, standards, exceptions, etc.

  • Further develops and manages the Risk and Compliance program and GRC initiatives, including maintaining a risk registry

  • Develop and mature new and existing capabilities in the risk and compliance space, such as vendor risk management

  • Develops a roadmap and strategy to mitigate and manage risk

  • Manages process documents necessary to address enhancements required to address audit & risk issues

  • Coordinate with customers on the protection of client information and on Cyber/Info Security assessments

  • Work closely with developers and infrastructure teams to design and implement the security policies required to protect the integrity, confidentiality and availability of the information on an end-to-end basis

  • Provide support & risk guidance in the areas of enterprise infrastructure, cloud-based software/infrastructure security, and secure software development

  • Identify critical business areas and partner with business stakeholders to implement necessary business resiliency support

  • Create and maintain a culture of risk management throughout the organization, driving adoption of security awareness, policies and controls in and across the Gartner enterprise

Job Requirements:


  • 5+ years of relevant experience in Information Risk Management, Cyber Security, IT security fundamentals and best practices

  • Bachelor's degree in Computer Science, Information Technology or related field

  • 5+ years of relevant experience in a regulated industry

  • Broad knowledge of information security principles (e.g. access control, data protection, security architecture, infrastructure/application security design principles, policies) and privacy (i.e. GDPR)

  • Experience evaluating security controls, conducting risks assessments and providing guidance for cloud environments

  • Working knowledge of information security and control frameworks (ISO27001, NIST, CobIT)

  • Experience in formulating, developing, and implementing new strategies and policies

  • High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity

  • Strong project management skills, with the ability to adapt to project developments, communicate clearly, demonstrate leadership and drive results in an Agile environment

Job ID00020317