Risk and Compliance, Manager

Information Technology Warsaw, Mazowieckie (Req. #6228)

Apply

Description

Xperi invents, develops and delivers technologies that create extraordinary experiences at home and on the go for millions of people around the world. Powering billions of consumer electronics, connected cars and digital content titles, we make entertainment more immersive, driving more intelligent and every interaction seamlessly personalized through our renowned consumer brands, including: DTS®, HD Radio™ and TiVo®.         
         
Xperi (NYSE: XPER) is a publicly traded technology company headquartered in San Jose, CA with over 2,000 employees across North America, Europe and Asia. Come join a thriving team where you can play an integral role in shaping the future of entertainment technology.        
   
Summary:    
   
The Manager of Risk and Compliance will focus on disaster recovery and business continuity for developing and implementing plans to ensure the organization can continue its critical operations in the face of disruptions. They coordinate recovery efforts, assess risks, and establish protocols for emergencies. Additionally, collaborate with various departments to enhance resilience and minimize downtime during unforeseen events. This will include assisting with privacy DPIAs and ongoing cybersecurity ISO and NIST efforts.    
   
Responsibilities:   
  • Develop and implement comprehensive disaster recovery and business continuity plans to safeguard critical operations.
  • Conduct annual risk assessments to identify potential threats and vulnerabilities to business continuity.
  • Coordinate with cross-functional teams to ensure alignment of recovery strategies with organizational objectives.
  • Establish and document emergency response procedures, including communication protocols and resource allocation strategies.
  • Conduct regular testing and simulations to evaluate the effectiveness of recovery plans and identify areas for improvement.
  • Collaborate with IT teams to ensure data backup, system recovery, and IT resilience measures are in place.
  • Stay informed about emerging risks and industry best practices in disaster recovery and business continuity.
  • Provide training and awareness programs to ensure staff understanding and adherence to continuity plans.
  • Liaise with employees and consultants to enhance overall resilience.
  • Document lessons learned to continuously refine recovery strategies.
  • Develop and implement risk treatment plans, recommending effective mitigation strategies to address identified risks and vulnerabilities.
  • Stay abreast of emerging threats and vulnerabilities, keeping the organization’s risk management practices aligned with industry standards and compliance requirements, particularly ISO 27001, 27002, NIST.
  • Communicate complex risk-related concepts to non-technical stakeholders, providing regular reports to senior management and facilitating informed decision-making to enhance the organization’s information security posture.
  • Management of the risk registry
  • Assist and at times lead penetration testing and NIST audits
  • Assist and at times lead management of SOX and PCI controls and assessments
   
Qualifications:
   
  •  Bachelor's degree in Business Continuity, Emergency Management, Information Technology or a related field; Master's degree is a plus.
  • Proven experience in disaster recovery and business continuity planning, with a focus on developing and implementing successful strategies.
  • Strong understanding of risk management principles and the ability to assess and prioritize potential threats.
  • Excellent communication and leadership skills to effectively coordinate response efforts across departments.
  • Familiarity with relevant regulations, standards, and frameworks in disaster recovery and business continuity.
  •  Analytical mindset with the ability to think strategically and make informed decisions under pressure.
  • Play a crucial role in ensuring the resilience and continuity of our organization in the face of unforeseen events.
Experience:   
  • 1-3 years as a compliance/risk assessor/auditor (SOX, SOC, ISO27001 PCI-DSS, NIST)
  • 1 years international (worldwide) compliance experience
  • 1 year as a lead/manager
CERTIFICATIONS: (Nice to Have)    
Certifications such as CBCP (Certified Business Continuity Professional) or equivalent are highly desirable   
Certified Information Systems Security Professional ( CISSP)   
Certified Information Systems Auditor ( CISA )
Certified Data Privacy Solutions Engineer ( CDPSE )   
Certified in Risk and Information Systems Control (CRISC)   
Chartered Enterprise Risk Analyst (CERA)   

Life @ Xperi:
          
At Xperi, we value People, Customers, Performance and Innovation. We are dedicated to creating a workplace where all employees have a voice and sense of belonging, feel safe and valued, and are acknowledged for how their unique differences contribute to organizational culture and business outcomes.          
Our employees and their families are important to us, and our comprehensive pay, stock and benefits programs reflect that. Xperi supports personal well-being, builds financial security and enables employees to share in our collective success.          
Rewards include:          
  • Competitive compensation (salary, equity and bonuses) and comprehensive benefits designed to foster work-life balance, care for your health, protect your finances and help you save and invest for the future.   
  • Generous paid time away from work, including flexible time off, holidays and sick time, health and wellness initiatives, and a charitable match program to help you give back to your community.   
  • Great perks, which vary by location and can be site-specific: employee discounts, transportation reimbursements, subsidized cafes and fitness facilities.   
  • A flexible, hybrid work environment combining the best of in-office collaboration and community-building along with the benefits of working from home.   
   

Apply Apply Later
← Back to Current Openings

Share