High Priority Position: Security Analyst with Quality Assurance/Quality Control, IT Risk Management, Cybersecurity, Audit, Compliance, Financial Services Exp. at NC || Hybrid Role
Babu S
Hope you are doing great today...
This is BABU, BDM FROM PANTAR SOLUTIONS INC, we are an Information Technology and Business Consulting firm specializing in Project-based Solutions and Professional Staffing Services. Please have a look at below position which is with our Client and let me know your interest ASAP. I would really appreciate if you could send me your MOST RECENT UPDATED RESUME:
Technology Business Line Risk Testing Analyst
Top Skills:
** Several years of experience in Quality Assurance/Quality Control, IT Risk Management, or Information Security;
** Execute and perform test of design and test of effectiveness of Technology, Information Security and data controls;
** Knowledge and experience in performing assessments aligned with regulatory standards;
** Ability to interact across multiple organizations and levels and escalate when roadblocks are identified;
** Financial Services experience;
** CRISC - Certified in Risk and Information Systems Control, CISA - Certified Information Systems Auditor, or CISSP - Certified Information Systems Security Professional would be beneficial.
** Must have excellent communication skills – able to work with and influence senior stakeholders, self-motivated – independent worker who will take initiative and work well collaboratively.
In this role, individuals are expected to:
- Execute and perform test of design and test of effectiveness of Technology, Information Security, and data controls.
- Identify gaps in the operational effectiveness and compliance with Policies, Standards, regulatory requirements, and industry best practices.
- Develop and present reports and action plans to business partners and senior management resulting from testing.
- Evaluate Technology, Cyber Security, and Data Management processes and systems for opportunities to improve compliance with Internal Policies/Standard requirements, alignment to regulatory expectations, process improvement and risk management.
- Design, coordinate and oversee testing procedures to verify the security of systems, networks, and applications, and manage the remediation of risks.
- Identify process improvement opportunities and develop subsequent plans of action to resolve gaps with minimal management intervention.
Qualifications:
- Completed at least an undergraduate degree in Information Systems, Information Technology, Cybersecurity, or Computer Science
- 2-4 years of experience in performing audits for Technology or Cybersecurity, Audit, Compliance, and/or Risk Management
- Perform audits for IT/IS controls which includes evaulate the design and operating effectiveness of the control structure and compliance with internal Policies and Standards, as well as industry guidance
- Knowledge and understanding of Technology and Cybersecurity industry frameworks and guidance (i.e., NIST, FFIEC, ISO 27001/27002)
- General understanding of fundamental technology and cyber security principles (e.g., Identity and Access Management, Vulnerability Management, Capacity Management, SDLC, Data Classifications, etc.)
- Ability to exercise judgement, make conclusions and influence a technology risk mindset with stakeholders
- Ability to function in a matrix organization and cross-functional team
- Ability to interact and influence personnel at all levels across the organization including associated to mid-level leadership
- Attention to detail and maintain relevant risk industry knowledge
- Critical thinking, problem solving and analytical skills
- Demonstrated ability to effectively synthesize and communicate ideas and insights across the organization, including with executive leadership
- Develop and maintain strong working relationships with internal Technology, risk, compliance and audit partners
- Document test results and provide support for an informed, objective opinion of the risk exposure
- Communicate testing results, observations, and recommendations verbally and in writing
- Engage directly with Business Line to understand business offerings, processes and procedures
- Work effectively with peers and leaders while maintaining independence necessary to fulfill Technology review and testing responsibilities
- Escalate and report technology and operational risks concerns as necessary
- Proficient use of Microsoft Office products: Word, Excel, PowerPoint, and SharePoint
- Identify emerging technology risks and lead the dialog among stakeholders
- Proficient written and verbal communication
- Monitor and drive Information Technology’s adherence to enterprise policies
- Review management action plans to assess effectiveness of proposed remediation and appropriateness of the timeline
- Strong detail orientation with ability to research, compile, and report on data
- Understanding of different types of systems (e.g., applications, servers, virtual servers, APIs, SaaS, Cloud computing)
PLEASE NOTE:
If for any reason this does not interest you or you felt uncomfortable by any part of this email, I sincerely apologize. Please consider this E-mail as a request for referrals and feel free in forward this email to anyone whom you might find a fit.