| Cybersecurity & Risk Management Tester, Tampa, Florida OR Dallas, Texas (Hybrid 3 Days onsite and rest remote weekly) at Dallas, Texas, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=719956&uid= From: Nikesh Mishra, Stellent IT LLC [email protected] Reply to: [email protected] Cybersecurity & Risk Management/Tester Tampa, Florida OR Dallas, Texas (Hybrid 3 Days onsite and rest remote weekly) Local Only GC or US Citizen Job Description Technology Risk Management Security Program Governance ensures Client is complying with best practices as defined in NIST Cyber Security Framework. Additional staffing is required to assist with assessments and testing of cyber technology areas. The ideal candidate has done related work for at least five years, and has a thorough knowledge of technology controls (IT and cyber) and how they are executed in todays IT threat landscape. The incumbent should have a strong understanding of testing cyber security methodologies, frameworks, and regulations in the financial services sector. Principal Responsibilities: - Understand cyber and IT best practices including knowledge of frameworks, guidelines, and regulations (i.e., NIST Cybersecurity Framework, FFIEC, NYSDFS) - Performing tests of effectiveness over controls, as prescribed by internal procedures, and documenting the results of the testing. - Coordinate and complete control testing which includes, obtaining populations and validating the completeness and accuracy, making sample selections based on sampling methodology, and performing appropriate testing steps to confirm the control is operating as designed. - Complete testing based on scheduled dates. - Identify gaps across tested controls - Communicate deficiencies, reviewing responses for validity and track remediation effort - Ensure targeted area being assessed meets all industry regulations, standards, and compliance requirements Experience - Previous audit experience preferred. - Familiar with ISO/IEC 27001/27002:2013, NIST Cybersecurity Framework, NIST Special Publication (SP) 800-53 or other cyber, technology, financial services guidelines, frameworks and regulations is required. - Expert writing skills to support thorough documentation of tested controls and communication of information security principles - Intermediate level experience with Microsoft Excel. Has ability to create metrics - Understand the concepts of information technology risk and the different elements required that mitigate risk. Knowledge and Skills Required: - Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization's cybersecurity risk Proven knowledge of security methodologies, policies, standards and best practices Strong technology background, including concepts such as application development, change management, and enterprise infrastructure Ability to explain and articulate technical concepts using both technical and non-technical language Proficient in PowerPoint, Excel and Word Experience with Microsoft Visio (preferred) Education, Training &/or Certification: College degree in Business Management / Computer Science CISA, CISM, CISSP, CRISC or equivalent certification Keywords: information technology green card http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=719956&uid= |
| [email protected] View All |
| 10:22 PM 05-Oct-23 |