Information Security Risk Compliance Manager -NYC, NY (Onsite)

[Harisha Katanguri]

Should be local to NY/NJ

Need Government/Public sector domain will be plus

$85-90/hr on C2C max

NYC ACS is the client

Should have more than 10 years of Information Security

 

Direct client REQ:
Title: Information Security Risk Compliance Manager
Location: NYC, NY (Onsite)
Duration: Contract 12 months

35 hours work week

Description:

Scope of Work Objectives
The Information Security Risk Compliance Manager oversees the organization's efforts in
• Risk assessment, Risk mitigation,
• Compliance management,
• Security governance, incident response, vendor risk management,
• Security awareness and training,
• Security audits and assessments, reporting and communication, continual improvement, and cross-functional collaboration.
• Their role is to ensure that the organization's systems, networks, and processes are secure, compliant with regulations and standards, and aligned with organizational goals and objectives.

Responsibilities:
• Conduct risk assessments to identify potential threats and vulnerabilities to the organization.
• Develop and implement risk management strategies and policies to mitigate identified risks.
• Monitor and evaluate risk exposure across various departments and business units.
• Coordinate with stakeholders to ensure compliance with regulatory requirements and industry standards.
• Communicate risk management strategies and findings to senior management and relevant stakeholders.
• Lead the development and maintenance of the organization's risk register and risk management framework.
• Provide guidance and support to departments and teams in implementing risk mitigation measures.
• Conduct training and awareness programs on risk management principles and practices.
• Continuously monitor and review the effectiveness of risk management strategies and adjust as necessary.
• Stay updated on emerging risks and industry trends to proactively address potential threats to the organization.
• Maintain and enhance the company-wide security awareness program.
• Take ownership of establishing and enforcing security standards both within the team and across the organization. Work proactively and collaboratively to achieve change management and buy-in.

Deliverables:
Compliance Management: Ensure compliance with relevant regulations, standards, and frameworks such as GDPR, HIPAA, ISO 27001, NIST, etc., by establishing and maintaining appropriate controls and processes.
• Risk Mitigation: Develop and oversee risk mitigation strategies and controls to address identified security risks, including implementing technical controls, security best practices, and security awareness training programs.
• Incident Response: Develop and implement incident response plans and procedures to effectively respond to and manage security incidents, including data breaches, cyberattacks, and security breaches.
• Vendor Risk Management: Assess and manage risks associated with third-party vendors and service providers, including evaluating their security posture, conducting due diligence assessments, and ensuring contractual compliance.
• Cross-functional collaboration: Collaborate with IT teams, legal, HR, compliance, and other departments to ensure a holistic approach to information security risk management and compliance.
• Continual Improvement: Monitor industry trends, emerging threats, and regulatory changes to ensure that the organization's information security risk and compliance programs remain up-to date and effective.
• Excellent verbal and written communication skills.
• Ability to work both independently and as part of a team.
• Knowledge of Networking (Firewall, Networking Protocols);
• Working knowledge Frameworks •
Working knowledge of Information Security Domains
• Working knowledge of Security protocols
• Working knowledge of Cloud computing

 

Thanks and Best Regards, 

 

Harisha Katanguri 

InfoPeople Corporation 

450 Seventh Avenue, Suite 1106 

New York, NY 10123 

 

Direct: (646) 790-8258
Email:  har...@infopeoplecorp.com  

Website : www.infopeoplecorp.com 

  

NYC DOITT ITCS Contractor 

NYS OGS PBITS Contractor 

GSA Schedule 70 Contractor 

NYC & NYS Certified Minority Business 

The Port Authority of NY &NJ Certified Minority Business 

National Minority Supplier Development Council Certified Minority Business 

SBA SDB Certified Business 

 

This e-mail is property of InfoPeople Corporation.  It is intended only for the person or entity to which it is addressed and may contain information that is privileged, confidential, or otherwise protected from disclosure.  Distribution or copying of this e-mail or the information contained herein by anyone other than the intended recipient is prohibited.  If you have received this e-mail in error, please immediately notify us by replying to this email and destroy all electronic and paper copies of this e-mail. 

 

“Every accomplishment starts with the decision to try. Either you will find a way, or you will make one”

 

--
You received this message because you are subscribed to the Google Groups "Harisha" group.
To unsubscribe from this group and stop receiving emails from it, send an email to harisha+u...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/harisha/DM8P221MB044079F7E7CCDC125C812730DE1CA%40DM8P221MB0440.NAMP221.PROD.OUTLOOK.COM.