Information Technology Security Specialist

Title: Technology Controls - Intermediate

Duration: 12 Months Contract for now, maybe RTH

Location: Norwalk Connecticut (or New York, Houston, Plano, Columbus, DE)

Notes:

Looking for people who has experience User Access Review, Audit control and assessment, SOC1- AUDIT and Information Security

Description:

Advanced in several IT Control and Project Management practices; experience in working across large environments

§ Expert in application and infrastructure high availability and resiliency architectures

§ Proficient in the following:

§ Risk and Control Assessments

§ Control Remediation

§ Resource Management

§ Stakeholder Management

§ Partnership and Influence

§ Technology control domains including but not limited to policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency,

risk and control governance and metrics, incident management, secure systems

development lifecycle, vulnerability management and data protection

Roles and Responsibilities:

Support SOC 2 assessments and PCI SAQ by reviewing requirements and gathering required evidence

Coordinate and complete User Access Review and Recertification every 6 months

Prepare and assist with responses to client questionnaires and JPMC RFIs related to Information Security and Privacy

Assess and monitor technology risks, ensuring compliance with company policies, standards, regulatory requirements and industry best practice

Assist with developing and maintaining Cyber Security Policies and Standards

Additional Skills

Bachelor’s degree or equivalent experience

Experience with SOC 2, PCI, or similar assessments

Strong problem-solving skills and communicates well across different teams and individuals throughout the company

Ability to work independently with minimal supervision

Intermediate to Advance level with Excel and PowerPoint