| Hybrid Cloud Cybersecurity Compliance Engineer :: Rockville, Maryland at Maryland, New York, USA |
| Email: [email protected] |
| From: Abhishek kumar singh, Tek Inspirations [email protected] Reply to: [email protected] Position: Cloud Cybersecurity Compliance Engineer Location: Hybrid (Rockville, Maryland) Duration: 2 years or longer Visa: USC Interview: Skype USC ONLY NEED LINKEDIN & REFERENCES NEED LOCAL Required submissions: Copy of certifications listed on resume. 2 3 or more, paragraphs explaining understanding of work to be done. 2 - 3 work references for the person being proposed, with contact information. Resume in MS Word format. Minimum Qualifications, must meet all: 5+ years-experience applying governance, risk, compliance principles to public cloud ecosystems such as AWS (Amazon), Azure (Microsoft) and/or (GRC) Google 5+ years-experience designing/implementing cloud-based information security/privacy polices mapped to industry standards and regulatory frameworks (e.g., NIST 800-53, FedRAMP, PCI, HIPAA etc.) Designing, implementing, and performing cloud-based risk assessments and control gap analysis; identifying, analyzing, and evaluating cloud security/privacy risks through analysis of vendor-provided SOC2 and other cloud security control documentation. Proven ability to communicate confidentially, professionally, and effectively, in both written and verbal formats, with business, technical, and third-party stakeholders. Developing monitoring, gathering, and analyzing information security and compliance metrics for management for the cloud environment. US Citizenship Ability to pass a comprehensive background check Abilit to work onsite in Rockville, Maryland Strong communication skills, both oral and written. Contractor will work side-by-side with client staff and play a lead role on the Governance, Risk, Compliance team having responsibility for the following: The contractor will provide technical staff to take a leading position in the clients Cloud Cybersecurity Compliance program. Their primary focus will be to identify and prioritize cloud related risks enterprise-wide, executing comprehensive risk assessments and control gap analyses in line with established information security policies and widely recognized risk management frameworks applicable to a range of public cloud environments. Contractor will report directly to Governance, Risk, Compliance Team Lead. Contractor will be responsible for conducting thorough reviews of legal contracts and agreements relevant to cloud services, including service level agreements (SLAs), data processing agreements (DPAs), and vendor contracts. This involves interpreting complex legal language and terms to ensure compliance with information security and privacy requirements, identifying potential risks or areas of non-compliance, and articulating these findings in a clear, comprehensible manner to business units and legal counsel. The contractor will liaise closely with client attorneys and business stakeholders to provide actionable insights, ensuring that contractual obligations align with the clients governance, risk, and compliance frameworks and standards. Additional job duties will include, but are not limited to the following: Designing, implementing, and continuously improving the clients cloud information security/privacy compliance program based on applicable policies, local/state/federal laws/regulations and adopted risk management frameworks. Designing, implementing, leading cloud-based risk assessments and control gap analysis procedures, activities, documents, and communication plans Leveraging NIST 800-53/FedRAMP assessment experience, technical, and program management skills to lead, plan, track, collaborate and report on the cloud governance, risk compliance program deliverables, including scheduling/leading meetings, assigning/tracking action items, and developing status reports. Performing cross functional interviews with business, technical and information security partners to determine if information security/privacy controls are implemented correctly, operating as intended, and producing the desired results. Communicating program controls, measurements, metrics, and assessment results confidentially, professionally, and effectively, in both written and verbal formats, with business, technical, and third-party stakeholders. Abhishek Singh Lead Technical Recruiter Desk: 4697760536 Email: [email protected] TEK Inspirations LLC : 13573 Tabasco Cat Trail, Frisco, TX 75035 Keywords: microsoft Texas |
| [email protected] View all |
| Tue Mar 19 23:38:00 UTC 2024 |