Hi This is sandi from GtechnologiesInc Role: Technology Specialist Location: Detroit Service Center – Support Desired Start Date: 6/7/2010 Estimated End Date: 12/10/2010 Rate : $50/hr
Resume window closes Tuesday, 5/18/2010 @ 3:00 PM. Resumes received after this date/time will not be accepted. Candidates submitted with rates at or below the Target Rate will be given priority in the evaluation process over candidates submitted above the Target Rate. No candidate will be accepted above the Maximum Rate. _______________________________________ SUMMARY This position focuses on the role of Information Security Compliance and Governance. This position is responsible for coordination of security compliance and governance efforts that are required for security access, audit response, security awareness, information security policies and standards, policy exception oversight, and information security risk management. ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned. 1. Monitors regulatory environment for impact on security programs and initiatives. 2. Develops policies, procedures and standards to ensure and enhance security. 3. Educates customers on security policy and practices. 4. Perform information security risk assessments based upon approved methodology. 5. Assists in development of annual information security risk assessment plan. 6. Responsible to lead internal regular information security risk assessments. 7. Responsible for developing, follow through and monitoring of any information security responses to audits. 8. Keeps abreast of the latest in security, risk, and compliance related to BCBSM data assets. Makes appropriate recommendations regarding the purchase of new monitoring, auditing, security tools. 9. Monitors and ensures compliance for all appropriate regulatory requirements including Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry and NAIC-MARS. 10. Optimize the Security Compliance and Governance strategy and direction 11. Develop and implement an information security awareness program. 12. Develop, manage and continually review information security policies and standards. 13. Perform self assessments as required by regulatory and industry compliance initiatives. 14. Implement management reporting and metrics for security compliance. This includes metrics development and reporting of security incidents and security awareness training. 15. Implement process and tracking to monitor compliance to policies and standards. Work with subject matter experts to ensure policies and standards are comprehensive, current and appropriate to meet regulatory and security requirements 16. Provide security report response for Human Resources, Legal and Compliance. 17. Coordinate policy exception requests and tracking EDUCATION AND/OR EXPERIENCE 1. Bachelor’s Degree in related field required. Master's Degree in related field preferred, but not required. 2. Minimum eight (8) years related experience preferred. 3. Security relevant certification desired, but not required (e.g., CISM, CISSP, CIPP etc) QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 1. Strong verbal and written communication skills. Ability to communicate effectively in difficult situations; effective interaction in confrontational and group settings. 2. Good analytical, decision-making, problem solving and organizational skills and ability to work with minimal supervision. 3. Ability to manage issues to closure within organizational boundaries. 4. Ability to prioritize and manage a variety of tasks simultaneously. 5. Experience in implementing security or regulatory standards such as HIPAA, PCI DSS, NAIC-MARS, or ISO 27001. 6. Experience with policy and standards development, implementation and compliance. 7. High level of integrity and ethics in dealing with confidential information. 8. Strong background in enterprise Information Security, project management, user training and support documentation. 9. Effective planning and organizational skills. Demonstrated ability to manage several projects and activities simultaneously while adhering to schedules. 10. Experienced in conducting a wide variety of security risk assessments of computing systems, technologies and processes including operating systems (Windows, UNIX, etc.), applications, telecommunications systems, firewalls, databases, routers and WAN/LAN. OTHER SKILLS AND ABILITIES 1. Excellent analytical, organizational, verbal and written communication skills. 2. Extensive creativity required across areas of expertise. 3. A high proficiency level in specific job related skills is required. 4. Other related skills and/or abilities may be required to perform this job Thanks & Regards sandi Recruiter G Technologies Inc. 4340 Stevens Creek Blvd, San Jose, CA 95129. Tel: (408)-414-2032 Ext 205 [email protected] <[email protected]> -- You received this message because you are subscribed to the Google Groups "KNOW.IT" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/know_it_az?hl=en.
