Hi BusinessPartners,
Hope you are doing great!
Looking for Vendor Risk Assessment Consultant (Risk Assessment, Audit) at Golden Valley, MN - 6+ Months - Please share resumes to lucky@itstrategiesinc.com
Locals are Always preferred, but non local is fine as well.
What is the specific title of the position?
IT Security Consultant - Supplier / Vendor Risk Assessment
What Project/Projects will the candidate be working on while on assignment?
Supporting Optums accelerated approach of the vendor management
What are the top 5-10 responsibilities for this position?
• Conduct and manage vendor risk assessments and due-diligence reviews
• Ensure vendor compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
• Review vendor supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
• Provision assessment reports and executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
• Communicate, escalate, and track vendor progress on assessment remediation activities
• Act as a liaison & SME for internal departments & vendors to successfully manage Vendor Risk Assessment
• Understand information security risks that are inherent to a business and articulate those risks in business terms
• Maintain current knowledge on information security topics and their applicability program requirements
• Engage VRO regarding any delays/deviations during remediation
What skills/attributes are a must have?
IT Security Consultant - Supplier / Vendor Risk Assessment
What Project/Projects will the candidate be working on while on assignment?
Supporting Optums accelerated approach of the vendor management
What are the top 5-10 responsibilities for this position?
• Conduct and manage vendor risk assessments and due-diligence reviews
• Ensure vendor compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements
• Review vendor supplied policies & procedures, internal/external assessment reports, agreements and provide feedback
• Provision assessment reports and executive summaries with recommendations & direction regarding remediation efforts and disposition of the third party
• Communicate, escalate, and track vendor progress on assessment remediation activities
• Act as a liaison & SME for internal departments & vendors to successfully manage Vendor Risk Assessment
• Understand information security risks that are inherent to a business and articulate those risks in business terms
• Maintain current knowledge on information security topics and their applicability program requirements
• Engage VRO regarding any delays/deviations during remediation
What skills/attributes are a must have?
• Advance level experience in MS Word, MS Excel, and MS PowerPoint etc.
• Experience working with senior levels of management
• Good follow-up skills and detail oriented
• Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA).
• Experience in examining the SSAE 16 Audit report
• Knowledge and understanding of different security products (web/email filtering, disk encryption, IDS/IPS, antivirus, DLP, firewall etc.)
• Knowledge of software development methodologies, application security, and OWASP guidelines
• Ability to document assessment work papers and preparing assessment report
• Ability to manage vendor assessment independently with minimal supervision
• Strong Communication and Presentation Skills
• Experience working with senior levels of management
• Good follow-up skills and detail oriented
• Security expertise including knowledge on different security risk assessment frameworks (NIST/Octave), standards (ISO27001/HITRUST/ITIL/Cobit), and act such as (HIPAA/GLBA).
• Experience in examining the SSAE 16 Audit report
• Knowledge and understanding of different security products (web/email filtering, disk encryption, IDS/IPS, antivirus, DLP, firewall etc.)
• Knowledge of software development methodologies, application security, and OWASP guidelines
• Ability to document assessment work papers and preparing assessment report
• Ability to manage vendor assessment independently with minimal supervision
• Strong Communication and Presentation Skills
Thanks & Regards
Lucky Pawar
Sr Technical Recruiter
Integrated Technology Strategies, Inc.
Ph: 856-677-3043
lucky@itstrategiesinc.com | www.itstrategiesinc.com
Yahoo/Gtalk IM : laxmikanthpawar
Lucky Pawar
Sr Technical Recruiter
Integrated Technology Strategies, Inc.
Ph: 856-677-3043
lucky@itstrategiesinc.com | www.itstrategiesinc.com
Yahoo/Gtalk IM : laxmikanthpawar
You received this message because you are subscribed to the Google Groups "SureShotJobs" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sureshotjobs+unsubscribe@googlegroups.com.
To post to this group, send email to sureshotjobs@googlegroups.com.
Visit this group at http://groups.google.com/group/sureshotjobs.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment