Job Description :
Barrister Global Services Network Inc. is currently looking for a motivated, highly detailed, organized and outgoing individual to support one of our major nationwide clients. The successful applicant should be able to quickly adapt their knowledge to the current IT environment and be able to enhance the current systems in place. They should also possess excellent verbal and written communication skills so as to be understood by technical and non-technical personnel.

Job Summary :

In this position your primary focus is the administration of security governance and compliance processes and monitoring and reporting security policy and program compliance.
You will support the development, education, monitoring, and implementation oversight of enterprise security policies and standards.


Essential Job Functions:

Maintain regional and local stakeholder relationships, meeting schedules, minutes, RACI and partnering accountability
Execute effective security risk assessments
Provide support for Evidence Repository (i.e. bWise, Archer, Connect)
Appropriately challenge and require high quality findings and issue definition from regional and local control owner /assurance partners
Provide support of policy/standards exceptions, report status to regional and local management, and advise on corrective actions
In conjunction with the Assessment Manager, provide advisory services and activities including risk assessments, definitions of policy and standard documentation, and interpretation of compliance results
Maintain, manage and monitor regional and local compliance to the internal control frameworks such as the IT Risk Standards, the Consolidated IT Control Catalog, Internal Controls Framework, SOX, HIPAA, PCI, SOC1-2, HiTRUST regulatory / legal and other obligations / requirements
Prepare stakeholder presentations for Assessment Manager, regional stakeholders and senior leadership
Partner with Internal Audit on remediation of findings



Requirements :

Bachelor's degree in Business, Computer Science or equivalent experience required
10 + years of work experience
Minimum 5 years working in area of ITGC or controls function
Prior experience in audit, risk management, governance, IT security and/or compliance functions
Proven experience dealing with ambiguous situations, and producing a consistent result with varied input
Project management background
Knowledge of information risk concepts and practices required
Knowledge of controls manifestation in large global corporations with regional and local presence is required
Experience of working across business units and geographical boundaries to engage IT, business and team members is required
Ability to investigate, question and interpret internal and external security environments is required




Preferred :

Masters degree desirable not required
Knowledge of Frameworks, including SOX, HIPAA, PCI, SOC1, SOC2, HiTRUST is a plus
Detailed knowledge of ITGC, Auditing principles / practices is desired
Good understanding of Vendor management desired
Good understanding of security frameworks desired
Good project management skills desired
CISSP, CISM, CISA, ITIL and/or COBIT 5.0


Employment Type: Contractor (1 year)
             

Similar Jobs you may be interested in ..