I have a very urgent DIRECT CLIENT requirement for *Information Security Specialist *in* *Brooklyn, NY*. *Please Let Me Know If you have available candidate, please reply with their word resume, location, rate and contact number.
Please send the resumes at pe...@cncconsulting.com Job Title: Information Security Specialist Location: Brooklyn, NY Duration: 2 Year The Information Security Professional will primarily be responsible for creating and formalizing the agency Enterprise Risk Management program (ERM) in support of the Information Security Governance initiative towards completion. The elected candidate will also be responsible for creating an executive reporting standard utilizing a Security Information and Event Management (SIEM). The Information Security Professional will work under the direct supervision of the Project Manager to interface with all business and IT users to create and document a standard risk management framework that identifies and mitigate agency risks across all business platforms. Duties will include risk assessments and analysis of system vulnerabilities on the agency network and business systems, assurance metrics on identified risk indicators, and maintaining and updating the agency risk register. The Information Security Professional must be available to work a minimum of 35 hours per week. Mandatory Skills: candidates must meet all the requirements below to be considered for the Certified Information Security Professional position. Minimum of five (5) years experience as an Information Security Professional. Certification as a Certified Information Systems Security Professional (CISSP) and a Certified Information Security Manager (CISM) with either one of the following: Certified Risk & Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), Certified Secure Software Lifecycle Professional (CSSLP) or SANS GIAC (ISO-27001 preferred, but not required) certified. Possess strong business acumen with excellent communication skills. Must have good presentation skills and comfortable communicating with mid and executive management. Strong documentation skills in policy and standards writing in addition to operational procedures. Must have conceptual skills to demonstrate complicated examples with visual illustrations for non-IT users. Experience with Windows, Linux, UNIX and Citrix Thin Client environment. Ability to recommend Operating System hardening for all environments and systems. Expert Active Directory security experience is required. Possess a broad knowledge of information security system controls (e.g. CISSP certified) and knowledge to identify technical, operational and business risks. Able to multi-task, be pro-active in project planning and requirements gathering and capable of setting priorities based on impact and risk to the business without supervision. Excellent interpersonal skills including negotiation, problem resolution and customer service. Must have experience with Data Leakage Prevention, Endpoint Security, Intrusion Prevention Systems, Integrity Controls, Encryption, Access Controls, Incident Response Procedures, Log Management, and Security Architecture & Design. Experience presenting security proposals to senior management and the ability to present complex ideas clearly and persuasively. Preferred Experience: Prior experience as an Information Security Manager or Director of Information Security. Prior and proven experience in Information Security with a focus on Enterprise Risk Management and Compliance. Thanks, *Peter Smith* 201-546-3127 Phone pe...@cncconsulting.com -- You received this message because you are subscribed to the Google Groups "SAP or Oracle Financials" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-or-oracle-financials+unsubscr...@googlegroups.com. To post to this group, send email to sap-or-oracle-financials@googlegroups.com. Visit this group at http://groups.google.com/group/sap-or-oracle-financials. For more options, visit https://groups.google.com/groups/opt_out.
