Taurean Consulting has a job for you

 

Job Details


Information Technology


Information Security Governance Specialist  ,   Posted: 10/14/2021
Job Description

Job ID#:

8730

Job Category:

Information Technology

Position Type:

Direct Employee


Responsibilities: 
  • Assist in formal risk assessment processes for all departmental and enterprise systems and work closely with system owners to align risks identified with established risk tolerances.
  • Participates in projects and assessments to establish risk determination and remediation
     Using industry best practices and tools, be able to utilize technology-based tools to validate controls are in place as established.
     Lead the development, update and compliance of corporate information security policies, guidelines and standards.
  • Work with technical teams to ensure baseline configurations are kept current and configurations for new technologies are designed and built prior to integration into the company environment.
  • Develop the comprehensive information security awareness program and run year-round campaigns. 
  • Create communications on behalf of IT Security for awareness activities, initiatives, or other required security announcements.
     Maintain security and compliance metrics that are meaningful and actionable for Sr. Management. Metrics should establish baselines, highlight progress and drive behaviors.
  • Coordinate with internal and external audit and compliance groups on improvement of information technology controls.
  • Experience with analyzing, evaluating, prioritizing and processing results from security penetration tests or assessments.

 
Job Requirements

 

Skills/Requirements: 
  • Bachelor's degree in Computer Science, Information Assurance, or related technical field or Business Administration. 
  • Or at least 5+ years' programming experience, with at least 5+ years in an IT and/or Information Security compliance and audit operationally focused role (PCI DSS, SOX, SSAE18, GDPR, NIST, COBIT).
  • Certifications include: OSCP, OSCE, OSEE, OSWE, CISSP, CSSLP, GWAPT, GPEN, eWPT, PNPT, etc (Preferred)
  • 5+ years of experience in penetration testing including Web App, Network, IoT, and/or Cloud (Preferred)
  • Experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Acunetix, NTO Spider) (Preferred)
*Must be located in Dallas, TX or Las Vegas, NV*




 

Already have an account? Log in here