Sr. Info Security Vendor Assessor

17 Aug 2024

Vacancy expired!

Our client is looking to hire a Sr. Info Sec Vendor Assessor

Key Responsibilities. Collaborates with senior leadership to build mutually beneficial relationships. . Demonstrates knowledge and understanding of information security across the company by identifying and engaging appropriate Infosec subject matter experts to mitigate risk. . Performs assessments of high and medium risk level third party vendors, as well as software vendors, to identify security risks. Must have knowledge of application security best practices, including the most critical security risks to web applications Supports vendor engagement legal contract reviews, ensuring appropriate infosec clauses are in place, and participates in associated quarterly business reviews of vendors as needed. . Determines effectiveness of design and implementation of information security controls by leading internal security assessments, and identifies information security risk trends across the organization based on the outcome Provides guidance on internal Infosec policies, procedures, standards and works as a liaison on system solution design. . Performs analysis of security risks, by interpreting data and other evidence in support of compensating controls or remediation to close such risks. . Acts as the subject matter expert on information security matters, or acts as a liaison with appropriate subject matter experts when relevant Researches and recommends improvements to existing processes (i.e., vendor assessments, information security assessments, or other information security programs, etc.) Researches and stays current on the latest information security and technology trends, best practices, and developments and reports on new and emerging threats through industry knowledge that can affect the organization's information assets Works with subject matter experts and management to develop a skill set for non-routine work. . Leads the development of long term strategies for conducting information security risk assessments of internal and external controls.

Requirements and Skills. Bachelor's Degree . Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field . Typically Minimum 8 Years Relevant Exp . Familiarity with OWASP Top Ten. . Knowledge of industry standard security compliance programs: National Institute of Standards and Technology (NIST) 800-53 Cybersecurity Framework, Payment Card Industry Data Security Standards (PCI DSS), Federal Financial Institutions Examination Council's (FFIEC) Information Technology Examination Handbook - Information Security, and International Organization for Standardization (ISO) 27001/2.

Preferred. Professional certifications CISSP (Certified Information System Security Professional)CISA (Certified-Information-Systems-Auditor),. Other relevant information security risk certifications

Who is Calance?Calance is a global IT company with operations in the United States, Canada and India. Over the years, Calance has grown organically and has acquired numerous successful IT Services firms along the way. As a result, the company today is a mix of diverse cultures, talents and expertise that collaborate globally to bring our best capabilities and thinking to clients. Calance also offers benefits which includes Medical, Dental, Vision care and 401K.

Calance - the place to grow.www.calance.com

  • ID: #44947563
  • State: Georgia Atlanta 30009 Atlanta USA
  • City: Atlanta
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2022-08-17
  • Deadline: 2022-10-15
  • Category: Et cetera