Sr. Security Engineer

Sr. Security Engineer #39669Long-Term ContractAtlanta, GAQualifications : As a member of our Information Security Governance, Risk, and Compliance organization, youll proactively identify, analyze, and remediate information security and technology risks throughout the third-party lifecycle (planning, due diligence, contract adherence, transition, continuous monitoring, and offboarding). Youll also have the opportunity to partner with IT Portfolios (Infrastructure and Reliability, Architecture, Channels Technology), key functional partners (Legal, Privacy, Corporate Audit) and external assessors.What you need to succeed (minimum qualifications) : 5 or more years of experience with information technology security programs, audits, controls and / or third-party risk management.Ability to identify and assess IT security controls against our policies and standards and Federal / State Regulatory requirements and identify and communicate gaps.Exceptional written and verbal communication skills.Advanced computer skills including Microsoft Office suite and other business-related software programs.An ability to effectively manage time and productivity with competing priorities in a rapidly changing, fast-paced, interactive, results-based team environment.Proven analytical / problem solving skills and ability to work with cross-functional teams.High School diploma, GED or High School Equivalency.Embraces diverse people, thinking and styles.Consistently makes safety and security, of self and others, the priority.What will give you a competitive edge (preferred qualifications) : Bachelors Degree or 5 plus years of relevant experience in Computer Science, Mathematics, Engineering, Information Systems, Management Information Systems or Information SecurityKey industry certifications such as CISA, CISM, CISSP, CRISC, etc.Knowledge of industry standard frameworks such as NIST Cybersecurity Framework, ISO 27001, NIST 800-30, etc.Familiarity with third party information security attestations / certifications such as SOC I / II reports, ISO, PCI-DSS, SOX.Comprehensive knowledge of third-party risk concepts, methodologies, governance structures and experience in managing risk and performing vendor risk assessments.Experience across Information Security domains such as governance and compliance, incident response, identity and access management, penetration testing, or e-discovery and forensics.Experience across IT domains such as application development, infrastructure, technical support and operations, cloud technologies and / or continuity of business.Experience with RSA Archer.[]{style="font-family : Calibri; color : var( bs-body-color); font-size : var( bs-body-"}