HI, Hope you are doing great!
This is Harry from Dynamic Enterprise Solutions. We have urgent requirement with one of our client's, please review below job description and let me know your interest Position ID: DYES00013345 Title: (ISRM) - Information Security Risk Management Length of Contract: 6 months Location: North Chicago, IL Senior Analyst, Information Security Description: The Sr. Analyst, Information Security works with various internal and external groups to ensure that Client information security policies, practices, and procedures are properly implemented within Client Business Programs. The analyst reviews business programs, projects, and initiatives from inception, throughout the implementation, to end of life, to ensure that appropriate security controls are applied throughout the entire lifecycle. . Establishes and maintains strong relationships with IT and Business group leaders to understand goals, programs and strategic objectives. Evaluates and articulates program security requirements; identifies potential security risk factors and business impacts. . Engages Client Third Party Suppliers to assess security posture, remediation requirements and compensating controls as they apply to Business Programs. . Develops in-depth knowledge of Client Information Security policies, processes and procedures, as well as compliance processes and initiatives in order to provide subject matter expertise and guidance to other organizations (Commercial, R&D, Audit, Legal, Purchasing, etc.) within Client. . Provides Information Security expertise and guidance to Business group leaders and IT Owners to ensure an appropriate balance between security risks and business enablement for identified business programs and initiatives. . Acts as central point of contact with regard to Information Security matters and Client security policies for Client Purchasing, Legal/Privacy and Quality during the supplier evaluation and contract negotiation process. . Reviews current technology and information policies and practices for continued applicability with respect to Client commercial and R&D business programs. Provides recommendations for improvements. Qualifications: . Minimum of 5 years Information Security experience or equivalent experience in Information Risk Management. . Good experience in Information Security or Information Risk Management. . Certified Information Systems Security Professional (CISSP) or other equivalent certifications required. . Strong experience and up to date knowledge in Open Systems, Windows, Mobility, Internet and network security products and platforms, including user authorization, encryption tools and techniques, communication protocols, vulnerability assessments, data loss and penetration testing, and secure coding. . Mix of IT operations and business program experience required. . Demonstrated skills in project management, collaboration, communication and organizational skills required. . Information Security Consulting background and experience preferred. . Written and verbal communication skills are critical. . Adept at communicating concepts to diverse audiences with varying skill sets. Education: Bachelor's Degree with 6 years of total experience or Master's degree with 5 years of experience Years of experience/education and/or certifcations required: Bachelor's Degree with 6 years of total experience or Master's degree with 5 years of experience What are the top 3-5 skills requirements should this person have? . Overall security knowledge, specifically in Encryption tools and techniques, Systems Support/Server Admin experience, Identity Access Management, and Third Party Evaluation process . Must have security controls experience on the supplier side- Third Party risk management( A risk analyst at third party) . Able to evaluate and articulate supplier information security requirements; Review supplier evidence/answers to Third Party Evaluations and provide information security expertise and guidance to business owners to ensure appropriate understanding of information security risks . Able to work across the different business units/functions at all levels of the organization. The candidate will be attending/assisting meetings with business owners, sr. management and suppliers to understand risk, remediation activities, and effectiveness of remediation plans against our security controls in an effort to close open security issues/gaps. Demonstrated skills in project management, collaboration, communication and organizational skills What is a nice to have (but not required) regarding skills, requirements, experience, education, or certification? . CISA and/or CISSP experience/certifications . Mix of IT operations and business programs Thanks & Regard's Harry John Dynamic Enterprise Solutions Inc 1801 Hicks Rd, unit A Rolling Meadows, IL -60008 (847) 719-7902 /C 224-635-0898 Email: jsol...@dynamic-enterprise.net ha...@dynamic-enterprise.net <mailto:ha...@dynamic-enterprise.net> www.Dynamic-enterprise.net <http://www.Dynamic-enterprise.net> _____ <https://home.mcafee.com/utm_medium=email&utm_source=link&utm_campaign=sig-e mail&utm_content=emailclient?utm_medium=email&utm_source=link&utm_campaign=s ig-email&utm_content=emailclient> Scanned by McAfee <https://home.mcafee.com/utm_medium=email&utm_source=link&utm_campaign=sig-e mail&utm_content=emailclient?utm_medium=email&utm_source=link&utm_campaign=s ig-email&utm_content=emailclient> and confirmed virus-free. -- You received this message because you are subscribed to "rtc-linux". Membership options at http://groups.google.com/group/rtc-linux . Please read http://groups.google.com/group/rtc-linux/web/checklist before submitting a driver. --- You received this message because you are subscribed to the Google Groups "rtc-linux" group. To unsubscribe from this group and stop receiving emails from it, send an email to rtc-linux+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/rtc-linux/153101d7b92a%24194d99c0%244be8cd40%24%40dynamic-enterprise.net.
