Hi
Please find the requirement below and let me know your interest... *Sr. Security Engineer with CISSP* Marlborough, MA Phone/Skype 6+ Months with possibility to go perm after 12 Months *Sr. Security Engineer – Must Have CISSP* The individual in this role will be a key member of our Information Security Risk Management team, with responsibilities in the areas of development of the overall Information Security Risk program, risk assessment of internal solutions and architectures, and risk assessment of third party vendors. *Keys to this position* · We are seeking 10 plus years’ in Information Security including 5 plus years’ of experience in an Information Security Risk role. Experience working with internal teams to advise on risk of proposed projects, as well as performing due diligence risk assessments on third party vendors is highly desired. · We are seeking technical depth in the following areas: Data Encryption, Access Control, Security Architecture, Information Security policy and standards and Vulnerability Management. This individual will need to be able to completely assess any risks within an Information Security Architecture. · Excellent communication skills are needed as this individual will interface with business users, outside vendors and IT teams. · The role is based in Marlborough but there is occasional travel to Boston (1 day every other week or so) so the candidate must be flexible to go to Boston when needed. *Qualifications* · 10+ years’ experience in Information Security roles with hands-on experience with a variety of technologies and architectures sufficient to provide the background necessary to work closely and “go deep” with development and infrastructure teams. · Preferred 5+ years’ experience in designing, deploying, or assessing information security technology, processes, and controls. · Experience helping to design, grow, and work within a formal qualitative Information Security risk management program. · Experience with Vendor Management Programs, performing risk assessments of third party service providers/vendors based on ISO27001 and SIG, review of SSAE16, etc. · Experience performing technical risk assessments for internal projects, working closely with the architecture team. · Significant breadth of technical experience and critical analysis skills sufficient to perform detailed risk analysis on a variety of technologies and use cases. The successful candidate will have the technical depth and analysis capabilities necessary to be proficient when examining controls and identifying risk in areas such as data encryption, access control, security architecture, information security policy and standards, and vulnerability management. · Past experience working with auditors to prepare SSAE16 or similar reports. · Experience responding to client RFPs, and meeting with clients to review information security posture. · Excellent verbal and written communication skills and presentation skills are a must. · Bachelor’s degree in Computer Science or related discipline. *Thanks and Regards,* *Manu Priya* *Sr. Technical Recruiter* *IDC Technologies* *1851 McCarthy Boulevard, Suite 116|Milpitas, CA , USA, 95035* *408-459-5794 [Direct] I **manu.pr...@idctechnologies.com* <manu.pr...@idctechnologies.com> *www.idctechnologies.com* <http://www.idctechnologies.com/> *Note: **Due to high volume of calls, I may miss your call, email is the better way to reach me.* -- You received this message because you are subscribed to the Google Groups "Open Source Erp & Crm" group. To unsubscribe from this group and stop receiving emails from it, send an email to open-source-erp-crm+unsubscr...@googlegroups.com. To post to this group, send email to open-source-erp-crm@googlegroups.com. Visit this group at https://groups.google.com/group/open-source-erp-crm. For more options, visit https://groups.google.com/d/optout.
