Job Details

Home

Need GRC or TPRM (Third Party Risk Manmagement )Sr. Systems Security Analyst in 100% Remote at Remote, Remote, USA

From:

John Papatla,

siri info solutions.inc

john.p@siriinfo.com

Reply to: john.p@siriinfo.com

Rate: $50/hr on C2C

Hello,

Hope you are doing well!!

Greeting from Siri Info Solutions.

I am John with Siri Info Solutions. We Siri Info Solutions is a global staff augmentation firm providing a wide-range of talent on-demand and total workforce solutions. We have an immediate opening for the below position with one of our premium clients

Role:
GRC/TPRM(Third Party Risk Management) Sr. Systems Security Analyst

Location: Remote - work EST hours (EST or CST)

Contract:6+ Months

Background:

This role is pure Third Party Risk Management (TPRM) for infosec/cybersecurity/risk assessments. We are not looking for a TPRM generalist, but rather a TPRM specifically for information security/cyber security to make sure they are complying with regulations and best practices.

Overview

: This person will assess risk posed by third parties ( producers, vendors, etc.) that Berkeley shares data with or has access to Bekleys network. TPRM makes sure these third parties have the necessary controls in place to protect Berkley from data breaches, etc. This person will fully rely on the data being supplied by the third parties (via questionnaires). Rufuina is looking for someone who knows, understands and can analyze risk who has strong communication (verbal and written) and documentation skills.

Questions: Rufina will provide screening questions related to Soc 3 and risk methodologies.

Should know what SOC 3 Reports are. Service Organization Controls

Three SOC Reports and each come in two types

What is the issue with the Soc 3 report

Written Part Instructions

: pretend im the vendor

Possible topic: Data Destruction and Media Sanitization Control:

Must haves Requirements:

3+ years conducting TPRM (third party risk management) Cybersecurity Risk assessments/reviews

Heavy SOC (Service Organization Controls) reports analysis background

Strong technical/written communication skills

Analytical and demonstrates deep understanding of Infosec/cybersecurity risk

Familiarity with Information Security/Data Privacy regulations (ex NYDFS Part 500, PCI DSS, GDPR, CCPA).

Infosecurity risk management focus with strong documentation

Nice-to-haves:

Advanced Information Security certifications (CISSP, CISA, or similar certifications)

College degree in the related technical discipline (Information Systems, Science, Information Security, etc).

Experience with security awareness training tools and/or phishing campaigns

Keywords: access management
https://jobs.nvoids.com/job_details.jsp?id=1034028

john.p@siriinfo.com
View All

12:51 AM 20-Jan-24

To remove this job post send "job_kill 1034028" as subject from john.p@siriinfo.com to usjobs@nvoids.com. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to john.p@siriinfo.com -

To

Subject
Message -

john.p@siriinfo.com wrote:
From:

John Papatla,

siri info solutions.inc

john.p@siriinfo.com

Reply to:   john.p@siriinfo.com

Rate: $50/hr on C2C

Hello,

Hope you are doing well!!

Greeting from Siri Info Solutions.

I am  John with Siri Info Solutions. We Siri Info Solutions is a global staff augmentation firm providing a wide-range of talent on-demand and total workforce solutions. We have an immediate opening for the below position with one of our premium clients

Role:  
GRC/TPRM(Third Party Risk Management)  Sr. Systems Security Analyst

Location: Remote - work EST hours (EST or CST)

Contract:6+ Months

Background:

This role is pure Third Party Risk Management (TPRM) for infosec/cybersecurity/risk assessments.  We are not looking for a TPRM generalist, but rather a TPRM specifically for information security/cyber security to make sure they are complying with regulations and best practices.

Overview

: This person will assess risk posed by third parties ( producers, vendors, etc.) that Berkeley shares data with or has access to Bekleys network.  TPRM makes sure these third parties have the necessary controls in place to protect Berkley from data breaches, etc. This person will fully rely on the data being supplied by the third parties (via questionnaires). Rufuina is looking for someone who knows, understands and can analyze risk who has  strong communication (verbal and written) and documentation skills.

Questions: Rufina will provide screening questions related to Soc 3 and risk methodologies.

Should know what SOC 3 Reports are. Service Organization Controls

Three SOC Reports and each come in two types

What is the issue with the Soc 3 report

Written Part Instructions

: pretend im the vendor

Possible topic: Data Destruction and Media Sanitization Control:

Must haves Requirements:

3+ years conducting TPRM (third party risk management) Cybersecurity Risk assessments/reviews

Heavy SOC (Service Organization Controls) reports analysis background

Strong technical/written communication skills

Analytical and demonstrates deep understanding of Infosec/cybersecurity risk

Familiarity with Information Security/Data Privacy regulations (ex NYDFS Part 500, PCI DSS, GDPR, CCPA).

Infosecurity risk management focus with strong documentation

Nice-to-haves:

Advanced Information Security certifications (CISSP, CISA, or similar certifications)

College degree in the related technical discipline (Information Systems, Science, Information Security, etc).

Experience with security awareness training tools and/or phishing campaigns

Keywords: access management

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at me@nvoids.com

Time Taken: 0

Location: ,