Information Security Governance Specialist

01 Dec 2024

Vacancy expired!

Responsibilities:
  • Assist in formal risk assessment processes for all departmental and enterprise systems and work closely with system owners to align risks identified with established risk tolerances.
  • Participates in projects and assessments to establish risk determination and remediation
  • Using industry best practices and tools, be able to utilize technology-based tools to validate controls are in place as established.
  • Lead the development, update and compliance of corporate information security policies, guidelines and standards.
  • Work with technical teams to ensure baseline configurations are kept current and configurations for new technologies are designed and built prior to integration into the company environment.
  • Develop the comprehensive information security awareness program and run year-round campaigns.
  • Create communications on behalf of IT Security for awareness activities, initiatives, or other required security announcements.
  • Maintain security and compliance metrics that are meaningful and actionable for Sr. Management. Metrics should establish baselines, highlight progress and drive behaviors.
  • Coordinate with internal and external audit and compliance groups on improvement of information technology controls.
  • Experience with analyzing, evaluating, prioritizing and processing results from security penetration tests or assessments.

Skills/Requirements:
  • Bachelor's degree in Computer Science, Information Assurance, or related technical field or Business Administration.
  • Or at least 5+ years' programming experience, with at least 5+ years in an IT and/or Information Security compliance and audit operationally focused role (PCI DSS, SOX, SSAE18, GDPR, NIST, COBIT).
  • Certifications include: OSCP, OSCE, OSEE, OSWE, CISSP, CSSLP, GWAPT, GPEN, eWPT, PNPT, etc

    (Preferred)
  • 5+ years of experience in penetration testing including Web App, Network, IoT, and/or Cloud

    (Preferred)
  • Experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Acunetix, NTO Spider)

    (Preferred)

Must be located in Dallas, TX or Las Vegas, NV

  • ID: #23698395
  • State: Nevada Las vegas 89101 Las vegas USA
  • City: Las vegas
  • Salary: Depends on Experience
  • Job type: Permanent
  • Showed: 2021-12-01
  • Deadline: 2022-01-18
  • Category: Systems/networking