| cybersecurity analyst :: usc :gc :: gcead:: h4ead :: need 10 year experience at Remote, Remote, USA |
| Email: [email protected] |
| From: shweta, zealhire [email protected] Reply to: [email protected] Secondary Skills N/A Job Description The Analyst will serve in an Asset Based Testing role that will help plan, scope, execute, and report testing of IT and Information Security controls. The Analyst will be responsible for all phases of the assessment and communications with business partners and other stakeholders. They will work in an Agile environment. Please use the skills matrix below and confirm your candidates years of professional experience in each area and please limit resumes to ONLY 5 pages experience must start on page ONE and all years of experience is reflected in their resume. years of experience Tools Client Name Overall professional experience: Control testing (Audit, ERM, First Line areas) Audit and information security risk assessments Federal and state laws, rules and regulations (i.e. Federal Financial Institutions Examination Manual (FFIEC), National Information of Standards and Technology (NIST), and International Standards Organization (ISO) NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series), ISO 27001/27002, SANS/CIS 20, PCI DSS, and other Information Security requirements and frameworks Working with all levels of staff, management, stakeholders, and third parties Does your candidate have a Bachelor Degree in business, information systems or related field Does your candidate have any of these certs: CISSP, CISA, CCSP, CRISC Where does your candidate currently live Please provide your candidates LinkedIn profile. Please attached the email confirmation of the candidate he/she is not submitted for the same role. Responsibilities Planning & Scoping of Asset Based Assessments to include development of communications, risk & control matrices, scope documents and other supporting information Perform walk-throughs with business partners identifying actual versus expected controls Create test strategies to test actual controls Document all work performed to meet the IIA reperformance standard Document issues and final reports Present to leadership results of assessments Qualifications Experience in control testing to include experience in some of the three lines of defense (Audit, ERM, First Line areas) Experience in audit and information security risk assessments Knowledge of applicable federal and state laws, rules and regulations (i.e. Federal Financial Institutions Examination Manual (FFIEC), National Information of Standards and Technology (NIST), and International Standards Organization (ISO) Knowledge of NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series), ISO 27001/27002, SANS/CIS 20, PCI DSS, and other Information Security requirements and frameworks Experience in working with all levels of staff, management, stakeholders, and third parties Effective planning and organizational skills Effective research, analytical and problem solving skills Strong verbal, written and interpersonal communication skills, including technical writing Bachelor Degree in business, information systems or related field or equivalent work/military experience CISSP, CISA, CCSP, CRISC or other Information Security certifications Ability to present findings and conclusions clearly and concisely Experience in working with all levels of staff, management, stakeholders, and third parties Ability to build effective relationships through rapport, trust, diplomacy, and tact Strong word processing and spreadsheet software skills Keywords: information technology cybersecurity analyst :: usc :gc :: gcead:: h4ead :: need 10 year experience [email protected] |
| [email protected] View all |
| Mon Dec 16 20:17:00 UTC 2024 |