| Remove/unsubscribe | Update contact/membership info. | Subscribe to receive requirements & resumes | |
| Dear Partner Greetings from Rufus of Octapace.
We have the below opportunity for your consultants. Please review and send only the best fit candidates.
KINDLY NOTE: Need candidates who are on your W2 NEED Visa Copy and Photo Identity Proof for submission
POSITION 1: IT Compliance Analyst El Segundo, CA 6+ months contract
POSITION 2: IT Risk & Compliance Management - Compliance Assessor El Segundo, CA 6+ months contract
Positions Overview: The Compliance Assessor of IT Risk & Compliance Management performs Security Risk Assessments on Client’s 3rd party vendors. An assessment would typically involve the following tasks: · Communicating and interviewing vendors and internal business groups · Obtaining and reviewing supporting documentation · Performing on-site assessments (where necessary) · Documenting vendor’s data security controls · Summarizing the adequacy of security controls · Outlining gaps & remediation steps · Providing recommendations · Capturing assessment results in centralized repository
Other responsibilities include: · Assisting in the upkeep of governance, risk and compliance (GRC) software applications · Interacting with team members and department/division personnel on other GRC related tasks · Documenting data and process flows (e.g. data flow diagrams / swim-lane diagrams) · Cataloging, tracking and reporting the status of other risk assessments and resolution actions · Managing several GRC related tasks simultaneously without a great deal of direction or oversight · Evaluating internal compliance to regulations such PCI · Proposing practical risk mitigations based on cost, benefit and risk
Experience: · Should have minimum 3-4 years of experience working with IT compliance and/or security audits · Should have experience with Governance, Risk & Compliance Programs · Should have understanding of Payment Card Industry Data Security Standard (PCI DSS) and other compliance frameworks (e.g.: ISO 27001) · Should have experience related to vendor management audits and/or SAS70/SSAE16 type audits · Should be able to effectively communicate complex topics with both technical and non-technical personnel · Should have experience in reviewing Polices & Procedures and security controls · Big 4 consulting experience is considered an advantage
Certifications (preferred, but not required): · PCI Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) · Certified Information Systems Security Professionals (CISSP) · Certified Information Security Manager (CISM) · Certified Information Systems Auditor (CISA)
Thanks Rufus Christopher
| |
| Privacy Policy | This is not an unsolicited eMail. Under Bill 1618 Title III passed by the 105th USA Congress this eMail cannot be considered as spam as long as we include our contact information and an option to be removed from our eMailing list. If you have received this message in error or, are not interested in receiving our eMails, please click the Remove/Unsubscribe link provided at the top of this eMail and complete the unsubscription process. Removal of your eMail address from our database is an automated process, so you must successfully complete this unsubscription process to get it done, thank you. | - powered by PROHIRES POWERHOUSE |
No comments:
Post a Comment