Risk Manager, Information Security
About Team:
At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, suppliers, sellers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus is on mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within our team.

What you'll do:
61 Manage vendor security risk management program by collaborating with various stakeholders.
61 As cybersecurity SME to conduct periodic online/offline vendor security assessment, follow up on findings per priority.
61 Collaborate with stakeholders (e.g., procurement, BU) to ensure all in-scope third parties are assessed and tracked through assessment processes and enhance review process per different market situation.
61 Respond to internal/external assessment and audit, facilitate whole review and manage review cycle to ensure completion before due time, address findings per priority.
61 Collaborate with Privacy team on local PIPIA to meet compliance requirements.
61 Assist on incident response and vulnerability remediation when involves third parties.
61 Build data analytics and metrics to track the effectiveness of the vendor security risk management program to implement continues improvement.

Preferred Qualifications:
61 Bachelor’s degree in cybersecurity, computer science, information technology.
61 One or more certifications of Security+, CISSP, CCSP, CISA, CISM, CCRC-DCO, ISO/IEC 27001:2022 lead auditor
61 Strong communication skills in both English and Mandarin with the ability to articulate and translate security, compliance and risk management terminology in business terms.
61 Minimum of 5-8 years of experience within the Cybersecurity or audit space.
61 Proven experience conducting vendor security risk assessments or audits in international company or group company.
61 Solid understanding of emerging security threats in retail industry, mitigation measures, and security technologies.
61 Strong understanding of information security frameworks (e.g., NIST CSF, NIST 800-53, ISO/IEC 27001:2022, PCI-DSS).
61 Able to work with stakeholders from different cultures.

Walmart doesn’t charge any recruitment or similar fee in the recruitment process including but not limited to interview, offering and onboarding.