What are the responsibilities and job description for the Security Engineer S-GRC (Opens a new window) position at CohnReznick Professional Services Pvt Ltd?
Security Engineer S-GRC
Opportunity ID
8265
Department(s)
Practice Management
Location(s)
Parsippany
Function
Information Technology
Job Description
As CohnReznick grows, so do our career opportunities. As one of the nation’s top professional services firms, CohnReznick creates rewarding careers in advisory, assurance, and tax with team members who value innovation and collaboration in everything they do!
CohnReznick helps organizations optimize performance, manage risk, and maximize value through CohnReznick LLP (assurance services) and CohnReznick Advisory LLC (advisory and tax services). Together, the firm provides leaders with deep industry knowledge and relationships, solutions to address clients’ unique business goals and risks, and insight on how emerging market forces can drive opportunity. With offices nationwide, the firm serves organizations around the world as an independent member of Nexia.
We currently have an exciting career opportunity for a Security Engineer, S-GRC (Security Governance Risk & Compliance) to join the Cybersecurity Virtual team in our Global Digital & Cybersecurity group.
CohnReznick is a hybrid firm and most of our professionals are located within a commutable distance to one of our offices. This position is considered remote which means it does not require job duties be performed within proximity of a CohnReznick office location. However, as a remote employee, you may be required to be present at a CohnReznick office with scheduled notice for client work, team meetings, or trainings.
YOUR TEAM.
This position will be part of the Cybersecurity, which is in the Global Digital & Cybersecurity group.
Join a global expanding team that is transforming the cybersecurity and information technology function with a comprehensive information security strategy and implementation plant that aligns with CohnReznick's business objectives and protects the firm's digital assets, client data, and reputation. The CISO leads the function that plays a crucial role in enabling CohnReznick's continued growth, digital innovation, and commitment to client trust in an increasingly complex threat landscape.
WHY COHNREZNICK?
At CohnReznick, we’re united by a common mission to create opportunity, value, and trust for our clients, our people, and our communities. Whether it’s working alongside your peers to solve a client challenge, or volunteering together at the local food bank, there are so many ways to find your “why” at the firm.
We believe it’s important to balance work with everyday life – and make time for enjoyment and fun. We invest in a robust Total Rewards package that includes everything from generous PTO, a flexible work environment, expanded parental leave, extensive learning & development, and even paid time off for employees to volunteer.
YOUR ROLE.
Responsibilities Include But Are Not Limited To
The successful candidate will have:
"CohnReznick" is the brand name under which CohnReznick LLP and CohnReznick Advisory LLC and their respective subsidiaries provide professional services. CohnReznick LLP and CohnReznick Advisory LLC (and their respective subsidiaries) practice in an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable law, regulations, and professional standards. CohnReznick LLP is a licensed CPA firm that provides attest services to its clients. CohnReznick Advisory LLC provides tax and business consulting services to its clients. CohnReznick Advisory LLC and its subsidiaries are not licensed CPA firms.
CohnReznick is an equal opportunity employer, committed to a diverse and inclusive team to drive business results and create a better future every day for our team members, clients, partners, and communities. We believe a diverse workforce allows us to match our growth ambitions and drive inclusion across the business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability. For more information, please see Equal Employment Opportunity Posters
If you are an individual with a disability in need of assistance at any time during our recruitment process, please contact us at CRaccommodation@CohnReznick.com Please note: This email address is reserved for individuals with disabilities in need of assistance and are not a means of inquiry about positions or application statuses.
CohnReznick does not accept unsolicited resumes from third-party recruiters unless such recruiters are currently engaged by CohnReznick Talent Acquisition Team by way of a written agreement to provide candidates for a specified opening. Any employment agency, person or entity that submits an unsolicited resume does so with the understanding that CohnReznick will have the right to hire that applicant at its discretion without any fee owed to the submitting employment agency, person or entity.
Opportunity ID
8265
Department(s)
Practice Management
Location(s)
Parsippany
Function
Information Technology
Job Description
As CohnReznick grows, so do our career opportunities. As one of the nation’s top professional services firms, CohnReznick creates rewarding careers in advisory, assurance, and tax with team members who value innovation and collaboration in everything they do!
CohnReznick helps organizations optimize performance, manage risk, and maximize value through CohnReznick LLP (assurance services) and CohnReznick Advisory LLC (advisory and tax services). Together, the firm provides leaders with deep industry knowledge and relationships, solutions to address clients’ unique business goals and risks, and insight on how emerging market forces can drive opportunity. With offices nationwide, the firm serves organizations around the world as an independent member of Nexia.
We currently have an exciting career opportunity for a Security Engineer, S-GRC (Security Governance Risk & Compliance) to join the Cybersecurity Virtual team in our Global Digital & Cybersecurity group.
CohnReznick is a hybrid firm and most of our professionals are located within a commutable distance to one of our offices. This position is considered remote which means it does not require job duties be performed within proximity of a CohnReznick office location. However, as a remote employee, you may be required to be present at a CohnReznick office with scheduled notice for client work, team meetings, or trainings.
YOUR TEAM.
This position will be part of the Cybersecurity, which is in the Global Digital & Cybersecurity group.
Join a global expanding team that is transforming the cybersecurity and information technology function with a comprehensive information security strategy and implementation plant that aligns with CohnReznick's business objectives and protects the firm's digital assets, client data, and reputation. The CISO leads the function that plays a crucial role in enabling CohnReznick's continued growth, digital innovation, and commitment to client trust in an increasingly complex threat landscape.
WHY COHNREZNICK?
At CohnReznick, we’re united by a common mission to create opportunity, value, and trust for our clients, our people, and our communities. Whether it’s working alongside your peers to solve a client challenge, or volunteering together at the local food bank, there are so many ways to find your “why” at the firm.
We believe it’s important to balance work with everyday life – and make time for enjoyment and fun. We invest in a robust Total Rewards package that includes everything from generous PTO, a flexible work environment, expanded parental leave, extensive learning & development, and even paid time off for employees to volunteer.
YOUR ROLE.
Responsibilities Include But Are Not Limited To
- Data driven and automation savvy to build out real-time evidence collection and reporting for Security Governance Risk and Compliance
- Create processes and evidence collection repository (may combine real-time and point in time based data collection)
- Manage evidence for NIST CSF, NIST 800-171, SOC 2, CMMC assessments and framework compliance
- Develop and own process and measurement of Cybersecurity Posture Management across all cybersecurity, network and edge protection tools
- Create, adapt and ensure controls are in place with consistent reporting for regulatory compliance
- Manage and oversight of the firewall and edge protection cybersecurity settings
- Collaborate with security architects and the DevSecOps group to measure effectiveness of development tools and CI/CD pipeline
- Collaborate with Cybersecurity, GRC, and other Global Digital & Cybersecurity (aka IT) groups to develop, execute and track the performance of security measures to protect information, network infrastructure and computer systems
- Demonstrate analytical and problem-solving skills and excellent interpersonal skills
- Demonstrate ability to prioritize tasks and meet daily deadlines for programs and projects
- Communicate effectively with others at all levels of the organization and individuals outside of the organization
The successful candidate will have:
- Infinite curiosity, analytical skills and attention to detail
- In-depth knowledge of cybersecurity frameworks and maturity models e.g. NIST CSF, NIST 800-171, CMMC
- Experience with creating and reviewing risk assessments and audit compliance reports
- In-depth knowledge of cybersecurity certification process and evidence gathering e.g. SOC 2 Type II, ISO 27001
- Experience with cybersecurity tools: SIEM, IDS/IPS, XDR, EDR, Cloud security controls, PAM
- Experience with one or more programming languages such as C , Java, Python. JavaScript or C#
- Experience with Windows, Linux, scripting (Bash, Powershell, or Perl), LDAP, SQL, and web services
- Experience with Cloud security
- Degree in Computer Science/Information Systems/Cybersecurity, or equivalent related degree or work experience
- Cybersecurity certifications, preferred (e.g. Security , CompTIA, CISM, CGET, CIPT, CRISC, etc.)
- Minimum of 5 years of demonstrated cybersecurity or GRC experience
- Minimum 6 years of progressive career growth and additional responsibilities
- Requires knowledge of O365 security tools and platform
- Scripting skills, programming, data manipulation and general knowledge of Artificial Intelligence are desired
- Excellent organizational and communication (verbal and written) skills
"CohnReznick" is the brand name under which CohnReznick LLP and CohnReznick Advisory LLC and their respective subsidiaries provide professional services. CohnReznick LLP and CohnReznick Advisory LLC (and their respective subsidiaries) practice in an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable law, regulations, and professional standards. CohnReznick LLP is a licensed CPA firm that provides attest services to its clients. CohnReznick Advisory LLC provides tax and business consulting services to its clients. CohnReznick Advisory LLC and its subsidiaries are not licensed CPA firms.
CohnReznick is an equal opportunity employer, committed to a diverse and inclusive team to drive business results and create a better future every day for our team members, clients, partners, and communities. We believe a diverse workforce allows us to match our growth ambitions and drive inclusion across the business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability. For more information, please see Equal Employment Opportunity Posters
If you are an individual with a disability in need of assistance at any time during our recruitment process, please contact us at CRaccommodation@CohnReznick.com Please note: This email address is reserved for individuals with disabilities in need of assistance and are not a means of inquiry about positions or application statuses.
CohnReznick does not accept unsolicited resumes from third-party recruiters unless such recruiters are currently engaged by CohnReznick Talent Acquisition Team by way of a written agreement to provide candidates for a specified opening. Any employment agency, person or entity that submits an unsolicited resume does so with the understanding that CohnReznick will have the right to hire that applicant at its discretion without any fee owed to the submitting employment agency, person or entity.
