Job Description :
IT Security Engineer (Risk/ Control /Audit)
Location: Richmond, VA
Duration: 6 months – Possible Extension

Required Skills Risk/Audit Engineer.
Need candidates with strong SOX, PCI, Audit, Risk, Controls, Compliance experience

Responsibilities:
Requires a mix of broad, business and technical acumen with strong people-management skills, and the ability to inspire and influence decisions around technical risk management with development and the business.
Develop and maintain technology and operations roadmaps for application infrastructure compliance components. Including but not limited to SOX, PCI, MFA, Access, Prevention/Detection, Interface, User monitoring, and much more
Partner closely with Tech Development, Operations Infrastructure and Network and Cyber teams to ensure IT Operations and Security Operations are aligned
Partner with a geographically dispersed team of information security engineers, analysts, and operators responsible for running a well-managed environment/operation
Develop long term relationships with peers at other financial institutions by active participation in industry controls and products (ie. ecommerce, Card Brands, processors
Partner with other Tech leadership team members to collectively build and drive the well-managed 1st line of defence Program, Strategy, and Roadmap.

Skill Set Preferences:
- Leading and collecting Compliance and Testing data, information, using analytics and reporting to SLT - Analyse, design, implement, validate and maintain key artefacts to ensure Application/Data compliance for Access, PCI, SOX, MFA and Audit program/framework and alignment with the Enterprise Policy
- Identify and implement process improvements driving issue resolution/risk mitigation activities
- Supports, responds and facilitates various regulator and audit requests

Basic Qualifications:
Bachelor’s Degree
5 years of application technology experience
5 years of Information Security Experience and 3+ Years in Risk and Control
3 years of people management experience