*Please send me profile on my id vsaras...@tekshapers.com <vsaras...@tekshapers.com>*
*Position:- IT Security Risk and Compliance * *Location:- Parsippany, NJ* *Duration:- 6 Months* *MOI:- Telephonic + Skype* *Need Only USC, GC* *The 3 most important skills for this role: * 1. Vulnerability/penetration test issue management 2. IT security policies 3. Audits in SOX and PCI *Overview:* - Our Direct Client is currently seeking an Analyst for IT Security Risk & Compliance to assist in the development and maintenance of risk management systems and processes. - This role will help identify and analyze areas of potential risk to information and system assets and manage the execution of mitigation strategies. - He/she will ensure that adequate and effective security processes and controls are followed and aligned to deliver compliance with security policy and regulatory requirements. *Responsibilities Include:* - Manage, track and monitor corrective action plans for standards exceptions and control deficiencies. - Oversee and ensure vulnerability and penetration testing on key assets are executed timely and successfully. - Assist in the development of IT security policies and standards. - Lead the design and implementation of a comprehensive IT security metrics report working closely with Security Operations and IT management. - Manage and oversee internal and external IT audits. - Assist in the PCI 3.0 Compliance project. - Lead the design and deployment the enterprise GRC platform working closely with professional service consultants. - Oversee and partake in the execution of the quarterly IT SOX control self-assessment. - Manage the IT Security Training and Awareness Program. *To be qualified for this position you must have:* - Bachelor's degree in Computer Sciences or Computer Information Systems at Minimum or related field degree - 3-5 years of hands on experience in IT Security Risk and Compliance - 3-5 years of experience with Network, Infrastructure and Application Security - Strong technical knowledge of applicable regulatory requirements including (SOX) and Payment Card Industry Data Security Standard (PCI-DSS), with working knowledge of COBIT, COSO, ISO framework - Strong technical knowledge in Risk Identification and mitigation. - General knowledge of applicable data privacy practices and laws. - Proven, in-depth technical knowledge of Information Security principles and process and writing IT policy. - Proven experience in a Governance, Risk & Compliance (GRC) framework. RSA Archer a plus! - Strong leadership qualities, ability to harness the commitment & contribution of team members outside of direct span of control. - Demonstrated understanding of project management principles. - Demonstrated experience creating a sustainable compliance office. - Excellent written and oral communication skills. - Excellent interpersonal skills and customer service skills. - Ability to conduct and direct research into risk/compliance issues and products as required. - Ability to present ideas in business-friendly and user-friendly language. - Highly self-motivated and directed. - Attention to detail. - Proven analytical, evaluative, and problem-solving abilities. - Ability to effectively prioritize and execute tasks in a high-pressure environment. - Extensive experience working in a team-oriented, collaborative environment. - CISSP, ISA, CRISC preferred. Regards, Vijay Saraswat(Sr Technical Recruiter) Tel Off: 248.565.4747 | Ext. 108| F: 248.254.7211 | Email Id: vsaras...@tekshapers.com <hgul...@tekshapers.com> | W: www.tekshapers.com GTalk: vsaras...@tekshapers.com <ras...@tekshapers.com>/*vijay.rgtalent* Tekshapers Inc. |1441 E Maple Rd,Suit#301,Troy,Michigan, USA * Please consider the environment before printing this email. Go Green!* *!!!* *Disclaimer:* If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject line at rem...@tekshapers.com and mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mails to you. We are sorry for the inconvenience. -- -- To unsubscribe from this group, send email to cbe-software-engineer-unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/CBE-Software-Engineer?hl=en --- You received this message because you are subscribed to the Google Groups "CBE Software Engineer" group. To unsubscribe from this group and stop receiving emails from it, send an email to cbe-software-engineer+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.