*Please send me profile on my id vsaras...@tekshapers.com <vsaras...@tekshapers.com>*
*Position:- IT Security Risk and Compliance * *Location:- Parsippany, NJ* *Duration:- 6 Months* *MOI:- Telephonic + Skype* *Need Only USC, GC* *The 3 most important skills for this role: * 1. Vulnerability/penetration test issue management 2. IT security policies 3. Audits in SOX and PCI *Overview:* - Our Direct Client is currently seeking an Analyst for IT Security Risk & Compliance to assist in the development and maintenance of risk management systems and processes. - This role will help identify and analyze areas of potential risk to information and system assets and manage the execution of mitigation strategies. - He/she will ensure that adequate and effective security processes and controls are followed and aligned to deliver compliance with security policy and regulatory requirements. *Responsibilities Include:* - Manage, track and monitor corrective action plans for standards exceptions and control deficiencies. - Oversee and ensure vulnerability and penetration testing on key assets are executed timely and successfully. - Assist in the development of IT security policies and standards. - Lead the design and implementation of a comprehensive IT security metrics report working closely with Security Operations and IT management. - Manage and oversee internal and external IT audits. - Assist in the PCI 3.0 Compliance project. - Lead the design and deployment the enterprise GRC platform working closely with professional service consultants. - Oversee and partake in the execution of the quarterly IT SOX control self-assessment. - Manage the IT Security Training and Awareness Program. *To be qualified for this position you must have:* - Bachelor's degree in Computer Sciences or Computer Information Systems at Minimum or related field degree - 3-5 years of hands on experience in IT Security Risk and Compliance - 3-5 years of experience with Network, Infrastructure and Application Security - Strong technical knowledge of applicable regulatory requirements including (SOX) and Payment Card Industry Data Security Standard (PCI-DSS), with working knowledge of COBIT, COSO, ISO framework - Strong technical knowledge in Risk Identification and mitigation. - General knowledge of applicable data privacy practices and laws. - Proven, in-depth technical knowledge of Information Security principles and process and writing IT policy. - Proven experience in a Governance, Risk & Compliance (GRC) framework. RSA Archer a plus! - Strong leadership qualities, ability to harness the commitment & contribution of team members outside of direct span of control. - Demonstrated understanding of project management principles. - Demonstrated experience creating a sustainable compliance office. - Excellent written and oral communication skills. - Excellent interpersonal skills and customer service skills. - Ability to conduct and direct research into risk/compliance issues and products as required. - Ability to present ideas in business-friendly and user-friendly language. - Highly self-motivated and directed. - Attention to detail. - Proven analytical, evaluative, and problem-solving abilities. - Ability to effectively prioritize and execute tasks in a high-pressure environment. - Extensive experience working in a team-oriented, collaborative environment. - CISSP, ISA, CRISC preferred. Regards, Vijay Saraswat(Sr Technical Recruiter) Tel Off: 248.565.4747 | Ext. 108| F: 248.254.7211 | Email Id: vsaras...@tekshapers.com <hgul...@tekshapers.com> | W: www.tekshapers.com GTalk: vsaras...@tekshapers.com <ras...@tekshapers.com>/*vijay.rgtalent* Tekshapers Inc. |1441 E Maple Rd,Suit#301,Troy,Michigan, USA * Please consider the environment before printing this email. Go Green!* *!!!* *Disclaimer:* If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject line at rem...@tekshapers.com and mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mails to you. We are sorry for the inconvenience. -- You received this message because you are subscribed to the Google Groups "SAP-UK" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-uk+unsubscr...@googlegroups.com. To post to this group, send email to sap-uk@googlegroups.com. Visit this group at http://groups.google.com/group/sap-uk. For more options, visit https://groups.google.com/d/optout.