Job Description

The Manager of Information Security Office (ISO) Events Risk Management will lead risk-based decision-making related to information security, cybersecurity, and technology impacting the NFL business and brand, specifically for major events like the Super Bowl. This role serves as the primary contact between cybersecurity and event stakeholders and leads the evolution of the NFL’s cybersecurity program at venues and stadiums.

Responsibilities

• Represent the Information Security Office in events planning meetings
• Collaborate cross-functionally to verify deliverables and deadlines
• Evaluate project details, cost, and timelines
• Develop and evolve information security standards for events and stadia
• Liaise with NFL departments to execute League events
• Engage business partners regarding cybersecurity issues
• Inform business partners of risk implications
• Activate ISO resources
• Educate stakeholders on cybersecurity
• Provide consultancy on information security risks
• Enforce policies and maintain a consistent risk management approach
• Participate in cybersecurity and business-related councils

Requirements

• 7+ years of experience in risk management, governance, and regulatory requirements related to cybersecurity
• Familiarity with risk & information security frameworks (ISO/IEC 27001, COBIT, NIST, Cloud Controls Matrix)
• Working knowledge of Industrial, Operating Systems and Enterprise technologies
• Understanding of regulations (PCI, HIPAA, PII – GDPR, CCPA)
• Aptitude for understanding organizational environments
• Ability to understand business operations
• Strong communication and presentation skills
• Strong analytical and problem-solving skills

Benefits

• No benefits