Vacancy expired!
Caliber Home Loans, Inc. is one of the nation's fastest-growing mortgage lenders. We didn't move into the fast lane because of clever marketing campaigns or flashy television ads our talented employees worked hard to help us rise to the top of our industry.
Here at Caliber, we've replaced the stereotypical corporate culture with a casual "dress for your day"work atmosphere that promotes creativity and a collaborative environment that allows our team members to thrive. Position Summary: The Manager Security Risk Management is responsible for establishing and maintaining Caliber Home Loans overall IT security risk management program, which is designed to ensure that the company's IT systems and information assets are adequately protected. The individual in this position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets Caliber Home Loans regulatory and other compliance requirements. The Manager works proactively with the various clients, business units and other internal departments and organizations to implement practices that meet Caliber Home Loans defined policies and standards for information risk management. The Manager Security Risk Management is the "process owner" for all of Caliber Home Loans IT-related security risk assessment and identification activities, for the company's IT systems and information assets and for its IT-dependent strategic business objectives. A crucial element of the risk Managers role is working with senior executives, line-of-business leadership and other key decision makers to determine acceptable levels of residual risk for the company as a whole and for various internal departments and organizations. The ideal candidate for this position is a proven thought leader, problem solver and integrator of people and processes, as well as an effective internal consultant. The person must also possess solid domain competencies in a number of IT-risk-related disciplines, including security, business continuity management, privacy and compliance. While some company's IT risk management activities focus largely on technical solutions, effective risk management requires a more-comprehensive and performance-based approach that aligns levels of protection with business needs. For this reason, the Manager, IT Risk Management must be much more than simply a technology and controls expert, it must also possess significant management and communications skills and extensive business knowledge. Candidates must have implemented a security risk management program previously that clearly demonstrates the organization's ability to track, prioritize, remediate, and report on risks (whether generated from internal/external audits, technical issues, etc) to the organization. Duties & Responsibilities
Manage all the security risk-related activities of Caliber Home Loans IT organization, including budgeting, planning, testing, reporting, and recommending appropriate remediation measures.
Manage oversight and monitoring of risk mitigation and coordination of internal and external audits, customer related audits, 3rd party audits, and Compliance/Infosec controls, to ensure that other departments are taking effective remediation steps
Benchmark the risk management practices of other companies particularly those in related industries or with similar business models maintain an up-to-date understanding of industry best practices, and monitor the legal and regulatory environment for developments that could require changes to Caliber Home Loans established IT policies and practices
Create, disseminate, and (as required) update documentation of Caliber Home Loans matrix of identified IT risks and controls
Work directly with the business units and other internal departments and organizations to facilitate IT risk analysis and risk management processes, identify acceptable levels of residual risk, and establish roles and responsibilities related to information classification and protection
Coordinate information security and risk management projects with personnel from the IT organization, lines of business, and other internal departments and organizations
Review risk assessments, analyze the effectiveness of Caliber Home Loans IT control activities and report on them with actionable recommendations to the CISO, the CIO, and applicable Lines of Business executive leadership
Follow up on deficiencies identified in monitoring reviews, self-assessments, automated assessments, and internal and external audits to ensure that appropriate remediation measures have been taken
Provide monthly/quarterly/annual risk management metrics for individual Lines of Business, IT, and the overall company
Reports directly to Caliber Home Loans Chief Information Security Officer (CISO) and on IT-related risk management activities
Tracks and reports risk management trends, opportunities, and remediation quarterly
Works closely with the CIO and the security, compliance, business continuity management and privacy organizations to develop and implement effective IT risk management practices
Makes recommendations for the CISO, appropriate risk governance committees, line-of business leadership and the board of directors concerning IT-risk-related controls
Acts as risk management liaison with all levels of the IT organization and with the lines of business and other internal departments and organizations
Supervises direct reports, as well as, the IT-risk-management-related activities of indirect reports and others
Technical Requirements
In-depth knowledge of a broad range of standards and frameworks for example, International Standards Organization (ISO) 27001, IT Infrastructure Library and ISO 20000, Capability Maturity Model Integration and Six Sigma
Preferred Qualifications
Certified Information Security Auditor, Certified Information Security Manager, Certified Information Systems Security Professional, or equivalent certification is beneficial
5-7 years of experience in a large complex IT risk management or a related discipline
Proven track record for documenting, tracking, reporting, and closing identified risks within the environment
Knowledge of common risk management methodologies for example, Control Objectives for Information and Related Technology and Committee of Sponsoring Organizations Enterprise Risk Management
Our employees demonstrate the Caliber Ways of Work (WOWS) every day through:
Collaborating Contagiously
Caring Fiercely
Doing the Right Thing
Leading Thoughtfully
Caliber benefits and perks will WOW you!
Our benefits package includes: comprehensive medical, dental, and vision insurance, short-term and long-term disability, 401(k),10 employer paid holidays, as well as numerous employee discount programs.
We are proud to be a military friendly employer, and provide paid leave during military assignments for employees who serve in the Guard or Reserve.
Employees who work at our Coppell headquarters experience additional perks that include: standing desks, complimentary coffee and tea stations, an on-site gym and activities center with ping-pong and pool tables, and an in-house café. Caliber is an equal opportunity employer