*Please send me resume to my official email id "[email protected]
<[email protected]>"*
Hi,
I have an urgent requirement with one of my clients, details given below.
If you find your self suitable for the position, please send me your latest
updated resume along with contact details. Please include your employer
details as well.
*Job Title*
Security Analyst
*Project Location*
Dallas, TX
*Duration*
12 months /Contract
*Skills Required and Job Description:*
*Mode Of Interview: **Telephonic & Skype*
* Skills:*
This role will be expected to demonstrate expertise in at one or more area
of the risk program and serve as the lead for those processes.
Specializations may include management of security application assessments,
third-party risk assessments, out of support hardware/software,
internal audit, or identity and access. This candidate needs to perform
risk assessments of critical business processes and technical
configurations to
identify significant risks to the organization, both internally and with
third-party providers, identify potential solutions, and drive a team to
implement the
solutions.
*Principal Responsibilities*
1) Conducts risk assessments of information resources, inclusive of
gathering responses, qualifying findings, assessing likelihood, severity
and overall
business impact of risks, overseeing mitigation plans, and
managing exception requests, both internally and for third-party providers
2) Gain knowledge of existing IT Risk controls, when and how to apply
them. Be conversant with the relevant control effectiveness measures for
the
controls. Enhance/develop new controls as appropriate
3) Review new regulatory guidelines from SEC, FFIEC, NIST etc. and
compare against existing controls, policies and processes. Identify gaps,
propose
new controls to close gaps and drive creation and adoption of the
controls
4) Ensure that risk profiles and assessments are kept up to date and
adjusted for significant changes in the external risk landscape
5) Coordinate and facilitate all aspects of IT audit engagements,
including SSAE 16, internal audits and regulatory
6) Drive establishment and monitoring of key risk indicators for
technical and management audiences
7) Lead the process for escalating risks to more senior levels when
appropriate
8) Improve the assessment/audit process and experience for
stakeholders
9) Lead the process for developing risk policies and procedures, risk
tolerance statements and approval processes
10) Liaison between the IT functions and business for all risk and
compliance issues
11) Provide risk training and awareness
12) Acts as a mentor for colleagues with less experience; may direct the
work of other staff members
13) Complete special/ad hoc projects as assigned by management
14) Develop and maintain IT Risk Dashboard that provides current IT Risk
posture
*Experience*
1) 7+ years of experience in support of Information Technology
systems, networks, and related business processes, can be inclusive of
other
experience requirements below.
2) 5+ years of relevant audit, information risk, security, or
compliance experience.
3) Subject-matter expert in multiple IT or security disciplines such
as authentication and authorization models, data protection methods,
networking,
firewall models, common application security models,
investigations, threat and vulnerability management processes.
4) Comfortable with interfacing with other internal or external
organizations regarding risk and compliance findings.
5) Firm understanding of risk assessment & analysis techniques, and
industry risk models.
6) Familiarity with the financial/banking regulatory environment.
7) Project management (for example: planning, organizing, and
managing resources to bring about the successful completion of specific
project goals
and objectives).10+ years overall business experience
8) Prior experience working with diverse, cross-functional,
cross-departmental projects and technologies; PMP certification a plus
9) Well-rounded understanding of technology, operations and key
business processes
10) Strong interpersonal skills
11) Excellent written and verbal communication skills
*Knowledge/Skills*
1) Certification in or progress toward at least one designation in an
information security, risk, compliance or related discipline (e.g. CISA,
CISM, CISSP,
CIPP, CIA, CPA, etc.)
2) Demonstrates a high degree of ethics; instills trust and
credibility
3) Effectively identifies, collaborates and maintains relationships
with relevant stakeholders
4) Portrays strong facilitation, negotiation, and conflict resolution
skills
5) Demonstrates superior analytical, writing and presentation skills
6) Translates requirements and risk concepts into relevant and
understandable terms.
7) Manages individual workload to deliver with excellence on
simultaneous projects and priorities each with tight schedules
8) Experience with GRC tools especially Archer, Brinqa will be a plus
9) Familiar with risk and control frameworks, and process improvement
models (e.g. Risk IT, NIST RMF, COBIT, COSO, ISO 27002, ITIL, CMM)
10) Experienced in policy development & management
11) Intermediate to advanced proficiencies with MS Excel, MS Word, and
MS PowerPoint as well as SQL knowledge highly desirable
*Education, Training or Certification*
Advanced degree in a technical discipline preferred
Thanks & Regards,
*Swetank Rana*
Technical Resource Specialist
*RG Talent Inc*
*39120 Argonaut way*
* Suite # 157, Fremont CA 94538*
Phone : 510-443-0758 EXT- 123
Email : [email protected]
URL : www.rgtalent.com
In my absence please contact *Javed *at following address
[email protected]
*Disclaimer: Under Bill s. 1618 Title III passed by the 105th U.S. Congress
this mail cannot be considered spam as long as we include a way to be
removed from our mailing list. Simply send us an e-mail at
[email protected] <[email protected]> and we will gladly REMOVE you
from our mailing list.*
Click To Unsubscribe
<http://rtl.rgtalent.com/RTL-INTIME/vendorAction.po?mailType=CO&compId=2&[email protected]&requestFor=R>
--
--
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/CBE-Software-Engineer?hl=en
---
You received this message because you are subscribed to the Google Groups "CBE
Software Engineer" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
