Hi BusinessPartners, Hope you are doing great! Looking for *Vendor Risk Assessment Consultant (Risk Assessment, Audit) at Golden Valley, MN - 6+ Months** -* Please share resumes to [email protected]
*Locals are Always preferred*, but *non local is fine* as well. *What is the specific title of the position?* IT Security Consultant - Supplier / Vendor Risk Assessment *What Project/Projects will the candidate be working on while on assignment?* Supporting Optums accelerated approach of the vendor management *What are the top 5-10 responsibilities for this position? * • Conduct and manage vendor risk assessments and due-diligence reviews • Ensure vendor compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements • Review vendor supplied policies & procedures, internal/external assessment reports, agreements and provide feedback • Provision assessment reports and executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party • Communicate, escalate, and track vendor progress on assessment remediation activities • Act as a liaison & SME for internal departments & vendors to successfully manage Vendor Risk Assessment • Understand information security risks that are inherent to a business and articulate those risks in business terms • Maintain current knowledge on information security topics and their applicability program requirements • Engage VRO regarding any delays/deviations during remediation *What skills/attributes are a must have?* • Advance level experience in MS Word, MS Excel, and MS PowerPoint etc. • Experience working with senior levels of management • Good follow-up skills and detail oriented • Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA). • Experience in examining the SSAE 16 Audit report • Knowledge and understanding of different security products (web/email filtering, disk encryption, IDS/IPS, antivirus, DLP, firewall etc.) • Knowledge of software development methodologies, application security, and OWASP guidelines • Ability to document assessment work papers and preparing assessment report • Ability to manage vendor assessment independently with minimal supervision • Strong Communication and Presentation Skills -- *Thanks & Regards* *Lucky Pawar* Sr Technical Recruiter *Integrated Technology Strategies, Inc.* Ph: 856-677-3043 [email protected] | www.itstrategiesinc.com Yahoo/Gtalk IM : laxmikanthpawar -- You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/us_itgroups. For more options, visit https://groups.google.com/d/optout.
