Vacancy caducado!
- Lead efforts to achieve and maintain PCI DSS compliance for in-scope systems
- Oversee efforts to ensure IT General Controls meet requirements defined requirements.
- Coordinate IT SOX compliance efforts with internal and external auditors
- Conduct or assist with internal security assessments, provide recommendations to mitigate risks, and manage resulting corrective action plans and projects
- Conduct technical risk assessments, privacy assessments and information security reviews on internal systems, applications and platforms providing security remediation advice and training to technical personnel.
- Oversee endpoint and system vulnerabilities management program
- Lead assessment and mitigation efforts to ensure appropriate access levels to systems and resources
- Support internal audits, including risk and compliance of our technical and client-facing teams
- Monitor and manage security alerts from key information security dashboards (SIEM, IDS, EDR, etc.).
- Perform root-cause analysis for information security related issues and related actions
- Assist with the creation, enforcement, and training of employees on information security policies
- Proactively monitoring network traffic for unusual activity
- Facilitate, review and complete vendor and client IT audit questionnaires and 3rd party assessments
- Other duties as assigned
- Bachelor’s degree in Computer Science or relevant
- At least 2 years of relevant experience in IT with significant exposure to Operational Information Security
- Experience with vulnerability management, and AV solutions.
- Highly organized, and detail-oriented with a strong work ethic and sound all-around judgment
- Proven ability to manage multiple projects simultaneously under tight deadlines
- Self-starter who thrives when trusted with the autonomy to identify areas in which you can add value and to develop and execute plans for improving such areas
- Strong verbal and written communication skills with internal teams and external clients
- Ability to travel domestically and internationally as required
- Must occasionally lift and/or move up to 15 pounds
- Bachelor’s degree in IT or relevant field, or the equivalent combination of education and experience
- At least 4 years of relevant experience in IT security and/or IT Operations
- 2-3 years of with significant exposure to IT regulatory controls, including PCI DSS
- Foundational understanding TCP/IP protocols, Operating Systems and Network Security
- Experience in Office 365 and Azure Security
- Previous experience in PCI SSD compliance and regulatory frameworks
- Experience (PowerShell, Python, Perl, etc.)
- End Point Protection such as Symantec, Carbon black or Palo Alto
- One or more security certificates (CompTIA Security+, CISSP, CISA)
- Self-starter who thrives when trusted with the autonomy to identify areas in which you can add value and to develop and execute plans for improving such areas
- Strong verbal and written communication skills with internal teams and ex
Vacancy caducado!