Cybersecurity Compliance Specialist

Requisition Number: 60218

Corning is vital to progress – in the industries we help shape and in the world we share.

We invent life-changing technologies using materials science. Our scientific and manufacturing expertise, boundless curiosity, and commitment to purposeful invention place us at the center of the way the world interacts, works, learns, and lives.

Our sustained investment in research, development, and invention means we’re always ready to solve the toughest challenges alongside our customers.

The global Information Technology (IT) Function is leading efforts to align IT and Business Strategy, leverage IT investments, and optimize end to end business processes and associated information integration technologies. Through these efforts, IT helps to improve the competitive position of Corning's businesses through IT enabled processes. IT also delivers Information Technology applications, infrastructure, and project services in a cost efficient manner to Corning worldwide.

Scope of Position:

In this position, you will work as a member of the cybersecurity compliance team, focused on ensuring Corning achieves and maintains its compliance goals. This position will be specifically focused on the cyber/information security aspects of China cyber regulations such as MLPS. The perfect candidate will bring an enthusiasm for building and maintaining compliant environments, and a willingness to learn compliance standards. This candidate will generally work alongside another member of the compliance team but will eventually grow to be able to operate on their own.

Responsibilities:

• Work closely with Corning Legal/Privacy teams to maintain awareness of evolving Chinese data privacy and cybersecurity regulations
• Drive the compliance of country regulations such as CSL, MLPS, other.
• Perform compliance tasks to meet the regulations and maintain its performance.
• Identifying gaps at assigned locations and assist in the response to government inquiries.
• Development of compliant policies and procedures
• Development and maintenance of MLPS certification artifacts
• 维护安全计划按照compliance requirements
• Assist with internal and external compliance assessments
• Build enthusiasm and buy-in for the cybersecurity compliance program across Corning
• Work proactively to stay involved in the compliance ecosystem and stay alert to changes that may affect Corning’s compliance

Education and Experience:

• College degree in Cybersecurity, Computer Science or similar degree preferred but not required
• Industry certification CISSP, CRISC, Sec+, GICSP, GRID, GCCC, or similar
• 3+ years of general cybersecurity experience
• 3+ years of relevant audit and/or corporate compliance experience

Required Skills and Competencies

• Capable of understanding and learn about external cyber security compliance requirements
• Capable to implement cyber compliance requirements locally while adhering to corporate standards
• Capable of advising on both short-term and long-term strategy plan that integrates both external needs and corporate strategy

• Multi-national working experience
• Fluent English communication (listening, speaking, reading, and writing)
• General understanding of cybersecurity practices
• Experience with various operating systems: Windows, Linux, Unix
• Experience presenting to both technical and non-technical audiences
• Ability to work independently or as a member of a team
• Experience helping IT organizations understand compliance requirements, evidence-gathering requirements, implementing compliance-related processes and tools

Travel Requirement

• Yes, up to 15%