These job descriptions are examples. Looking for work?

Find JobsFind Jobs

Analyst - Information Security

0 people like this description

Our client is looking to onboard an Information Security Consultant, someone with strong information security background and experience in governance and audit to be a part of the Business Technology Solutions Systems Support Team.

*** Major Responsibilities include ***

* Implement risk management framework to identify, document and manage our client's information protection risks. Mitigation plans must be developed and presented to Confidentiality Committee for approval and funding.
* Assess the current adequacy of the information protection strategy and threats to the business then developing solutions and defensive steps to take to prevent potential adverse events.
* Work closely with the business and technology teams to anticipate potential privacy issues embedded in new projects as well as the use of emerging technologies.
* Participate in the SDLC process to ensure risk/security controls are being incorporated.
* Participate in new business initiatives and product development activities to identify and escalate privacy and confidentiality considerations.
* Triage and escalate cybersecurity incidents and coordinating appropriate level of response.
* Coordinate execution of security systems upgrades and infrastructure on behalf of our client.
* Stay knowledgeable of current advances in all areas of information technology concerning vulnerabilities, security breaches or malicious attacks.
* Develop and maintain standard project deliverables for all ongoing projects, e.g. creating a project plan, issue/risk/assumption log, status report.

*** Qualifications ***

* 8+ yrs. experience with information security, privacy, or related field preferably in the captive finance or banking industries.
* Knowledge of U.S. laws and regulations, such as HIPAA, Gramm-Leach-Bliley Act and U.S. state breach notification laws.
* Demonstrated experience managing enterprise-wide info security or privacy projects from concept through implementation.
* Experience implementing Generally Accepted Privacy Principles (GAPP), COBIT
* Experience developing and/or implementing a governance model for privacy and confidentiality.
* Experience with consumer credit, consumer and/or retail services marketing, and supplier management is beneficial.
* Must be self-motivated with strong analytical, organizational, planning and problem solving skills.
* Strong technical and business writing skills, as well as strong communication skills.
* Ability to communicate well with technical teams, executives, auditors and business owners and other stakeholders as required
* Bachelor's degree in business administration, law, finance, accounting, computer science or a related discipline is required
* Advanced degree in business (M.B.A.), information science (MIS), information security or a related field is preferred
* Familiarity or experience with cloud computing, online services, Web applications and enterprise applications.
* Experience implementing privacy policies in a business that engages in B2B and business-to-consumer (B2C) transactions.
* Knowledge of software development life cycles (SDLCs) is beneficial.
* Experience or familiarity with governance, risk and compliance (GRC) tools and how they be used to support privacy-related GRC.

These job descriptions are examples. Looking for work?

Find JobsFind Jobs