You will be a part of a team specifically within the IT Infrastructure Organization looking at Risk and Compliance. We are a continuous monitoring program. Monitor and/or test, review certain control activities on a regular basis. We have a series of monthly, weekly and annual tasks that we do. For example, we test our change management process - have our testing objectives and make sure that the changes that we put into production apply to our methodologies. Report how we're doing on those activities. We do compliance documentation and NIST annual self-assessment every year.We do PCI (2), that we own beginning to end. It's a little bit of testing, reviewing, monitoring and a little PM'ing and other ad hoc tasks that land on our plates.
Performs information technology risk management functions, providing expertise and direction in support of internal reviews, and internal and external audits; including control documentation, risk assessments, adherence to controls, and remediation activities. Defines, implements, maintains and trains on information technology processes supporting industry best practices and information security standards. Performs complex systems analysis, develops processes and procedures, and works on research assignments to facilitate the successful and auditable delivery in IT.
1.Provides expertise interpreting the compliance to the National Institute of Standards in Technology and other industry security standards.
2.Provides assistance, coordination and guidance on questions, problems or remediation supporting corporate security policies.
3.Acts as technical advisor to recommend solutions for project managers, analysts, system development resources, and trainers.
4.Coordinates and participates in audits, vulnerability testing, and compliance reviews representing information technology functions in support of security, audit, and risk needs. Tracks and reports on remediation efforts. Escalates areas of risk and concern.
5.Performs information technology quality reviews and identifies risks and standards in jeopardy; supports corrective actions.
6.Performs information technology business continuity and disaster recovery risk assessments, and supports corrective actions.
7.Develops, mentors, trains and champions information technology processes, standards, templates, tools and techniques.
8.Performs regular reviews, and contributes to development and maintenance of information technology processes, standards, templates, tools and techniques.
9.Responsible for facilitating, tracking, measuring, reporting and interpreting key information technology metrics.
10.Acts as liaison between corporate functions, internal/external clients, operations and technical staff.
11.Develops and maintains project communications and management reporting on quality reviews and audit and remediation activities.
12.Works in conjunction with other departments to ensure the best corporate solutions are architected and deployed.
Bachelors degree in Information Sciences or related field and/or commensurate experience preferred.
1.3 + years in designing, developing, implementing, managing, or supporting information technology solutions.
2.Prior work experience in information technology security, project management, data center operations, or application development or support.
3.Training (preferred, but not required): Certifications - CISA, CISSP, or CISM
4.Experience with vulnerability scanning and intrusion detection processes.
5. GRC monitoring tools experience is nice to have.
COMPETENCIES - SKILLS/KNOWLEDGE/ABILITIES:
1.Proficiency with MS Project, Excel, Word, Access, Visio, and SharePoint.
2.Demonstrated ability to meet regulatory agency standards, such as Sarbanes Oxley, SSAE16 or NIST.
3.Demonstrated knowledge and comprehension of technical system environments, including infrastructure networks, web applications, iSeries or Microsoft server systems, data storage, and packaged software products.
4.Proficiency in using a variety of personal computer software tools to track metrics, maintain collaborative communications, and provide effective reporting.
5.Ability to prepare and deliver professional training media.
6.Demonstrated goal orientation. Sets challenging, measured goals and takes appropriate actions to meet them.
7.Proven productivity and efficiency in completing deliverables.
8.Demonstrated exceptional positive attitude and is energized by new challenges.
9.Consistently accepts accountability for decisions made.
10.Demonstrated knowledge and comprehension of how to define system requirements, and manage projects.
11.Demonstrated ability to develop new processes, analyze existing processes, and recommend improvements.
12.Demonstrated ability to complete complex and challenging assignments on time and with confidence.
13.Shows commitment to acquiring new knowledge and skills to improve success.
14.Demonstrated exceptional problem solving skills through ability to identify root causes, to think of new and creative ways to solve problems or pursue opportunities, and to recommend solutions to complex problems.
15.Demonstrated ability to identify business and customer needs, is able to effectively articulate at all levels and build strong customer and peer relationships.
16.Exceptional oral and written communication skills, presentation skills and team work.
Join TEKsystems®, a leading IT staffing, IT talent management and IT services firm, and get your career on the fast track. We have more than 100 offices worldwide, and we partner with over 6,000 clients and place over 80,000 consultants per year. At TEKsystems, we seek to understand our consultants' skills, goals and interests, allowing us to present targeted job opportunities on a contract, contract-to-hire or direct placement basis. TEKsystems' leadership in the market stems from our sincere and personal commitment to driving the success of our customers, consultants and each other.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, genetic information or any other characteristic protected by law.
If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please call 888 472-3411 or email email@example.com for other accommodation options.
A little about us:
TEKsystems provides corporations with IT staffing, talent management expertise and IT services, enabling them to meet their business objective.