Job Description :
Compliance Consultant
Six month contract
Our client has pockets within the business which practices Citizen Development which is the enterprise practice of business professionals, not trained in a technology discipline, to build, deploy and continuously improve applications critical to their business in a secure, controlled and disciplined manner that is sanctioned and governed by IT.
-Citizen Development as some software is modular and NOT coding so they can build actual applications with these software products in order to integrate various applications.
-Client currently has Citizen Development already but they now need to assure all is compliant.
-Client desires better insight into Citizen Development to make sure the application is doing what they are asking it to do.
-Need to build a framework in order to provide oversight to make sure people are following proper controls.
-IT Audit experience such as in a CI/CD (Continuous Integration/Continuous Delivery) development and Agile environment.
-Experience in auditing or governing a CI/CD (Continuous Integration/Continuous Delivery) environment.
-Technical skills: IT Audit, CI/CD, Agile, DevSecOps
(DevSecOps is a methodology similar to DevOps in that both of them are within an agile framework that breaks projects into smaller chunks. However, DevSecOps incorporates security into every step of the development process. Rather, DevSecOps represents an advancement of DevOps)
-Need thick skin as they will run into resistance from people who have been doing Citizen Development and will most likely push back on now having to adhere to whatever compliant standards set forth.
-KEY: Proven experience designing frameworks that have been implemented.
Frameworks they are following are:
ISO 27001: ISO/IEC 27001 is an international standard on how to manage information security.

Similar Jobs you may be interested in ..