*Title: CISSP Security Analyst * Location: New York, NY 10019
Duration: 1 Year+ Extensions Interview: In-Person Number of Position: 2 consulting * Must have CISSP Certification* *Responsibilities:* - Candidates should be experienced with Information Security Audit, Access Permissions, Red Flags, provisioning new accounts. The candidate should be able to hit the ground running very quickly CISSP is a must. This position reports into the Director of Information Security. - Develop strategy and approaches and implement the full life cycle of the Identity and Access Management (IAM) program as part of the Information Security services of the 1199SEIU Funds; access, plan, test, report and recommend appropriate remediation measures to ensure Information Security access management processes and standards are maintained - Assist in the development of the IAM security architecture, policies, principles and standards; ensure architecture meets best practices based on industry and organizational needs - Conduct IAM and Role Based Access Controls (RBAC) review for new applications and scheduled access validation of critical Fund applications, Partner with Information Technology (IT) and various business units to discuss access issues, explain access rights and manage process - Develop and maintain a privileged account management process - Maintain existing and manage the addition of applications to the Funds electronic identity management suite including Active Directory, MS Exchange and business applications. - Follow up on access management deficiencies identified in risk reviews, self-assessments, risk assessments, internal and external audits; ensure appropriate remediation measures are implemented - Perform additional duties and projects as assigned by management * Qualifications:* - Certified Information Systems Security Professional (CISSP) certification required - Knowledge of identity access technologies and practices - Knowledge of Public Key Infrastructure (PKI) and certificate based authentication a plus - Demonstrated experience with risk management, access rights and/or identity management required - Knowledge of common information security management frameworks such as: International Standards Organization (ISO) 17799/27001, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technology (CobiT) and National Institute of Standards and Technology (NIST) frameworks - Experience troubleshooting information security related problems and incidents; knowledge of security architecture including encryption, firewalls, VPN’s, anti-virus systems and vulnerability management preferred *Regards,* *Deepak Kumar* *310-448-1044* *deep...@rjtcompuquest.com <deep...@rjtcompuquest.com>* -- You received this message because you are subscribed to the Google Groups "OracleD2K" group. To unsubscribe from this group and stop receiving emails from it, send an email to oracled2k+unsubscr...@googlegroups.com. To post to this group, send email to oracled2k@googlegroups.com. Visit this group at https://groups.google.com/group/oracled2k. For more options, visit https://groups.google.com/d/optout.
