Information Security Risk Specialist in Raleigh, NC at Volt

Date Posted: 7/1/2018

Job Snapshot

  • Employee Type:
  • Location:
    Raleigh, NC
  • Job Type:
  • Duration:
    48 weeks
  • Date Posted:
  • Job ID:
  • Contact Name
    Volt Branch
  • Phone

Job Description

Our client,  a leading corporate reseller of software, hardware, and related services is currently hiring for Information Security Risk Specialists.  These positions can be based in Raleigh, Greensboro, or Winston-Salem NC.

Primary Purpose: 

The Information Security Risk Management Specialist is responsible for the implementation, maintenance and reporting for a highly effective Information Security Risk Management program.

Essential Duties and Responsibilities:

Following is a summary of the essential functions for this job.  Other duties may be performed, both major and minor, which are not mentioned below.  Specific activities may change from time to time.

  1. Responsible for the implementation, monitoring and reporting of the IS Risk Management program.
  2. Collaborate with CIS personnel to develop effective audit-issue and risk-finding remediation plans.
  3. Coordinate Information Security risk assessments and aggregate output.
  4. Evaluate adherence to established policy, standards and guidelines to ensure that IS Risk Management requirements are met.
  5. Develop effective management responses and remediation plans to ensure that target dates are met and that residual risk is communicated and found acceptable by senior management.
  6. Consistently deliver and execute on the designated strategy to effectively address regulatory requirements.
  7. Coordinate various aspects of regulatory submissions, including developing and reviewing technical documents, developing and tracking submission timelines, and managing the preparation of regulatory submissions to ensure compliance with regulations and guidelines.
  8. Provide expertise in translating regulatory requirements into practical, workable plans; prepare critical submission documentation and communicate with regulatory agencies where applicable.
  9. Act as a point of contact between Corporate Information Security (CIS) and other functional areas.
  10. Evaluate adherence to established policies, standards, and guidelines to ensure that CIS risk management requirements are met.
  11. Maintain knowledge of and monitor changes in pertinent laws, regulations, and guidance to effectively interpret external developments and inform/educate internal stakeholders.
  12. Coordinate efforts with leadership staff to prepare graphs, charts, presentations and technical documents.
  13. Provide additional administrative support functions as requested.

Required Skills and Competencies:

The requirements listed below are representative of the knowledge, skill and/or ability required.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  1. Bachelor’s degree in Computer Science, Technology, Business, or related discipline
  2. Six years of IT risk analysis/management experience
  3. Experience analyzing data to identify usage trends
  4. Demonstrated ability to take ownership of tasks, think independently, and deliver results
  5. Understanding of current financial services industry regulatory environment and related implications to security strategy, standards, and control frameworks such as COBIT, ISO, COSO and NIST
  6. Collect, clarify, and translate business requirements into action plans and documented process assets
  7. Facilitate meetings with the direct involvement of stakeholders
  8. Strong business acumen with experience conducting root cause and impact analysis
  9. Understanding of business processes, internal control risk management, IT controls, and related standards
  10. Demonstrated communications, presentation and collaboration skills
  11. Experience reviewing and approving protocols, reports, and documents used in regulatory submissions
  12. Demonstrated analytical and problem-solving skills with attention to detail
  13. Certified in at least one of the following: PMI-RMP, CRISC, CISA, CIA and/or CISM