Information Security Governance Specialist

September 16

Apply Now

Receive Emails with Similar Jobs

CollegeLink

WebsiteLinkedInAll Job Openings

11 - 50

💰 Grant on 2018-12

Description

• Provide risk management and governance oversight to ensure security controls and processes are appropriate to minimize risks and meet regulatory compliance requirements. • Assist with the management of and participates in the information security, governance, and risk management programs according to established policy requirements. • Monitor the information security, governance, and risk management programs to ensure organizational controls and processes are appropriate to minimize security risks and to ensure compliance with various security standards and regulatory requirements. • Develop, maintain and publish up-to-date information security policies, standards, and guidelines. • Advise executive leadership and provide oversight of policies, standards and procedures related to information security and regulatory requirements. • Assist with the development of and oversee effective disaster recovery policies and standards. • Conduct risk assessments against various regulatory compliance standards such as HIPAA, PCI, etc. • Participate in annual security audits, incident response exercises, security reporting, audit, and compliance support. • Develop and execute corrective action and remediation plans for identified issues, risks, or vulnerabilities. • Manage the training awareness program, monitor compliance, and develop security training.

Requirements

• Minimum of 5 years experience in IT security risk management or governance experience. • Minimum of 2 years experience as a system administrator, network administrator or in security operations may substitute 1 of the 5 years required experience above. • Minimum of 2 years experience in cloud services security • Knowledgeable about security controls and processes, vulnerabilities, regulatory and legal changes, and security standards that may impact information security • Hands on experience managing various security and governance, risk and compliance tools (e.g., Vulnerability Scanning, GRC Tools, etc.) • Experience in access control and identity management for on premise and cloud environments. • Ability to write security requirements and design documents. • Bachelor’s degree in Computer Science, Information Systems, Network Security Engineering or related major or equivalent work experience. • CISSP, CRISC, CISA, CDPSE, HCISPP certifications would be considered an asset

Benefits

• Comprehensive benefit package • Additional perks