Job Description

:Role: Associate Director - Control Testing (Deep Dive Reviews)About the Company:Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you wont just imagine the future-youll create it.About the Job:The Control Testing & Reporting (CTR) team is part of Chief Security Office (CSO) and responsible for testing information technology and information security controls owned and operated by AT&T Technology Services (ATS) (which includes CSO). This Associate Director joins the CTR leadership to lead a team of senior control testing professionals conducting deep dive reviews of critical infrastructure & applications, large remediation projects, and strategic transformation activities of ATS. This person,

• Responsible for end-to-end execution of deep dive reviews focused on critical infrastructure & applications or projects of ATS.
• Leads analysis of complex information technology and security issues and provides clear articulation of risk to AT&Ts critical assets (devices, networks, applications & data), and customers.
• Leads and drives strategic technology risk management program related activities with a focus on innovation and automation.
• Understands and stays up to date with industry trends in technology risk management. Brings expert knowledge in various tools, processes and industry best practices used in technology risk management to AT&T and supports the Technology Risk Management Framework (TRMF) build out.

Experience Level: 15+ years.Location: Hyderabad / BengaluruResponsibilities Include:

• Partnering with ATS leadership to understand the criticality of AT&Ts infrastructure, applications, and projects to identify specific areas for targeted reviews.
• Leading the development of test plans for these targeted reviews, while utilizing the recent ITGC test results and relevant findings.
• Leading the execution of these deep dive reviews, identifying issues that need remediation and reporting them to the senior ATS stakeholders.
• Supporting periodic articulation of risk to ATSs objectives using the test results and open issues by the Reporting team.
• Managing various senior stakeholder expectations, transformation projects, and ongoing deep dive reviews using strong multitasking skills, effective delegation, and technical acumen.
• Supporting the development of a Control Testing Methodology and other key components of TRMF and tooling that are related to or impact control testing.

Required skills:

• 15 years minimum experience in technology risk management or consulting with at least 10 years in design or testing of controls focused on critical IT infrastructure and applications.
• At least 8 years of experience in managing teams focused on controls design, testing or other related areas.

• Expert understanding of various technology risk management frameworks and standards. Strong exposure to regulatory requirements in multiple industries.
• Deep expertise in leading ERPs, and / or other third-party applications like Salesforce
• Proven project management skills and experience
• ISACA, ISC2 or other relevant certifications.

Desirable skills:

• Bachelors or Masters degree in Computer Science, Mathematics, Information Systems, Engineering or Cyber Security.
• The candidate should be comfortable driving people change and have a track record of successfully navigating organizational changes.
• Demonstrated expertise in creating organization level control testing programs, working effectively with a broad group of stakeholders.
• Flexible and creative thinker with strong execution skills, generates out-of-the-box solutions, manages ambiguity, anticipates the impact of decisions/initiatives and able to move seamlessly from high level concepts to details.

Additional information (if any): Need to be flexible to provide coverage in US morning hours.Weekly Hours: 40Time Type: RegularLocation: Hyderabad, Andhra Pradesh, IndiaIt is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.

AT&T