Vacancy expired!
Job Description ::
- Vulnerability Management, Qualys, Web Application Scanning, ThreatProtect, Policy Compliance, Cloud Agents, Asset Management, Governance, Risk Management and Compliance.
- Research on biggest risks of using ChatGPT and incorporate the required AI technology related language in Security Policies, Standards and Procedures.
- Provide expertise on developing ServiceNow automation for proxy and AI related exceptions and initiate the back-end catalog development and workflow implementation.
- Lead ServiceNow automation processes for FOSS & User-based access exceptions involving 8 different teams considering the usability and time.
- Initiate process enhancements for User-based access exceptions by adding Executive team related workflows,
- Drive automation for migration of records for User-based access exceptions in automation.
- Perform Gap Analysis on Security Policies, Standards, Procedures & baselines comparing to NIST SP 800-53.
- Perform risk assessments on Open source / freeware software technologies and User-based access exceptions to initiate the approval process.
- Develop metrics dashboards and stakeholder related reports for risk assessments, exceptions, findings, and other governance related processes to understand risk and implement enhancements for mitigation.
- Define process to manage policy exceptions and findings for better visibility and tracking.
- Develop and ensure technical baselines for secure management of systems across multiple platforms and applications identified and analyzed business violations of security policies and standards.
- Build AWS Cloud standards, policies, and procedures within our environment.
- Define and implement processes for managing annual reviews of policies, standards, and procedures throughout their lifecycle.
- Maintain Information Security Policies, Standards, Procedures and Program documentation through their lifecycle.
- Work cross-functionally with teams to assess risk, document policy findings and exceptions, identify remediation plans, and manage them through their lifecycle.