Hi, Please Rply to
himan...@1pointsys.com Hi, Urgent Requirement *Position : Sr. Risk Project Manager* *Location : Tampa FL* *Duration : 6 Month +* Security, Privacy & Risk - IT Risk - PM Responsible for responding to questions and concerns about PwC security from clients. Understands and documents global, regional, and local business processes for managing interactions with PwC clients' third party risk management programs. Works with stakeholders to ensure PwC security controls meet the regulatory and compliance needs of clients in key industries including financial services and healthcare. Undergraduate Degree (e.g., BA, BS) preferred in computer science, information technology or a related discipline. Knowledge: This position requires a deep functional knowledge of IT security management frameworks, especially ISO 27001 and 27002, and how they are applied in the context of broader IT management frameworks and related systems and processes. A solid understanding of IT security fundamentals across multiple domains. Strong knowledge and experience in access control and knowledge in more than one of the following areas: security management, security architecture, application security, operations security, physical security, cryptography, telecommunications and networking, business continuity planning, and/or privacy laws, investigations, and ethics. Strong experience managing interactions with clients and suppliers. Knowledge of engagement and third party vendor legal documentation and processes including MSA's, SOW's and RFP responses. Experience in working with and leading efforts with contributors from multiple business, service delivery and supplier teams. Knowledge of IT security assessment processes, including audit, vulnerability scanning, and security policy and standards review. Experience creating and managing IT security policies and standards. Ability to manage risks in an organization that uses a global sourcing strategy. Knowledge and understanding of the risks that exist in a business and security environment comprised of multiple global geographies and suppliers. Experience with commercial governance, risk and compliance - GRC - applications is desirable. *Skills*: Ability to leverage knowledge of risk identification, assessment, treatment processes to contribute to the development of new domain expertise in those processes on an ongoing basis. Experience in developing access control policies and a strong knowledge of role based access through the use of enterprise class user entitlement systems. Strong customer facing verbal and written communication skills. Comfortable independently engaging with client representatives up to the executive level and all levels of PwC management. This will include meeting directly with PwC clients as a representative of the IT organization. Able to produce written documentation at a level appropriate for submission to PwC clients and use in legal documentation - MSA's, SOW's and RFP responses. Ability to conduct internal assessment audits, including communication of findings, development of corrective action plans, and tracking corrective action status. Incorporate assessment and audit findings into ISMS risk assessment processes. Ability to manage policy management, risk management, and document management applications to develop and maintain security policies and standards. Identify and leverage relationships between data held in different applications to develop tools and reports that support the management of information security. Ability to contribute to cross-functional efforts, working with business, IT and global teams, as a representative of the risk management organization. Responsible for leading cross functional teams. Responsible for managing work by suppliers and other providers. Works closely with US and global risk management, security and IT organizations *One of the following certifications: CISSP, CISA, CISM, CRISC* -- You received this message because you are subscribed to the Google Groups "SAP Workflow" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-workflow+unsubscr...@googlegroups.com. To post to this group, send email to sap-workflow@googlegroups.com. Visit this group at https://groups.google.com/group/sap-workflow. For more options, visit https://groups.google.com/d/optout.
