IT Security Specialist
Posted on :
18-03-2024
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Req ID : 2638719
Title: IT Security Specialist IC2H ESFTeam
Work Location: Detroit MI 48226
Duration: 6 Months
Job Type: Contract
Work Type: Hybrid
Dept: EIS Purchased Services
Engagement Description:
- Develop and manage information security initiatives for multiple IT functional area across the enterprise related to risk management mitigation and response compliance control assurance and user awareness.
- Develop and drive security strategies policies/standards ensuring the effectiveness of solutions and providing securityconsultative services to the organization.
- Work on multiple complex projects as team member or technical lead.
- Bachelors degree in related field preferred.
- Five (5) years of combined IT experience to include two (2) years of IT security work experience with a broad range of exposure to systems analysis application development systems administration.
- Security Certification (i.e. Certified Information Systems Security Professional (CISSP) required).
- Knowledge and familiarity with security frameworks (e.g. HITRUST) preferred.
- Experience designing and implementing security solutions preferred.
- The EIS Compliance/Governance Analyst will be responsible for assisting in the responsibilities of executing the security framework compliance/governance activities and requirements for the client.
- Daytoday responsibilities will also include documenting adherence to governance requirements across policies/standards procedures controls compliance training and awareness and preparing metrics/KPIs and reporting materials.
- This role will report to the EIS ESF Manager.
- Evaluate the design and operation effectiveness of Business/IT operations against the HITRUST CSF and identify areas of improvement
- Interview SMEs examine evidence documentation analyze and perform testing
- Learn the company functions/processes by conducting process walk throughs
- Analyse root cause of issues provide recommendations for process improvements and risk mitigation based on assessment findings
- Collaborate with crossfunctional teams to mitigate risks and ensure compliance with HITRUST CSF
- Deliver effective and concise documentation that meets HITRUST quality standards
- Prepare and provide reporting such as dashboards and metrics on various areas of performance issue analysis and assessment statuses
- Utilize GRC tools to effectively manage assessment remediation plans and documentation
- Serve as a HITRUST subject matter expert
- Participate and provide support during audits assessments or other required thirdparty reviews.
- Support initiatives/projects
- Build relationships internally to foster a culture of teamwork and collaboration
Top 3 Required Skills/Experience
- At least 35 years of work experience in Information Security IT general controls IT compliance IT Assessments and/or IT audit experience as well as knowledge and understanding of governance risk complianc
- Knowledge of security and risk frameworks standards best practices (e.g. HITRUST CSF NIST CSF ISO/IEC 27001 COBIT)
- Selfstarter with effective written and verbal communication skills along with strong critical thinking skill
Required Skills/Experience The rest of the required skills/experience. Include:
- Effective written and verbal communication skills and the ability to tailor communication style to the audience at hand.
- Experience in coordination and execution of the audit lifecycle including evidence collection review observation tracking management response collection and auditor relations and communication.
- Strong demonstration of problemsolving and decisionmaking ability.
- Experience working on testing of IT controls across systems databases applications and operating systems
- Strong ability to frame and deliver messages based on experience and level of the listener.
- Strong critical thinking skills to actively pursue opportunities to develop and implement solutions to solve work problems. Must be able to solve problems handle conflict and make effective decisions under pressure with a highly professional demeanor.
- Strong organizational skills
- Strong ability to adjust to changing priorities while multitasking effectively.
- Selfdirected and works with minimal guidance. Proactively seeks guidance when needed.
Education/Certifications Include:
- Undergraduate university degree (4year) preferred but not required.
- Masters (e.g. MBA MSIS MIS etc.) degree preferred but not required.
- Five (5) years of combined IT experience to include two (2) years IT security work
- Experience in Information Security IT general controls IT compliance IT assessments and/or IT audit experience.
- Certified Information Systems Security Professional (CISSP) CISA CPA/CA CISM or other equivalent professional certification preferred but not required.
Employment Type
Full Time
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
