What are the responsibilities and job description for the Security & Compliance Specialist position at Randstad?
Job Description
Hello,
Hope you are doing well
Job Title: Security & Compliance Specialist
Duration: 12 Months
Location: Lake Buena Vista, FL
Job Description:
Assists in resolving security and compliance issues, as well as, developing processes, documentation and reports. Analyzes and reviews security findings and data and penetration testing results. Assist in monitoring and administering policies as directed. Represents the security needs of the organization by providing expertise and assistance in all GBTS projects with regards to security issues. Desire five years experience in related field. Solid knowledge of information security principles and practices. Create, manage and maintain user security awareness Enforce security policies and procedures. Prepare status reports on security matters to develop risk analysis scenarios. Knowledge of various Compliance policies and programs (PCI, SOX, Safe Harbor). Understanding of advanced security protocols and standards. Evaluate and develop approach to solutions. Proactively assesses potential items of risk and opportunities of vulnerability. Knowledge of various Compliance policies and programs (PCI, SOX, Safe Harbor). Review vulnerability assessments and conduct gap analysis. Bachelor's degree (or equivalent 4 years experience) plus an additional 5-6 years of IT security experience. Domain knowledge in multiple technical areas. Ability to work on most phases of functional requirements.
- Drive the development of solutions, and coordinating and monitoring remediation of all security gaps coming from a variety of sources.
- Communicate known issues to all necessary stakeholders.
- Work with stakeholders across the segment, and sometimes across the enterprise, to solution and develop action plans that sufficiently address the identified risk.
- Monitor and track action plans to completion.
- Provide regular status reporting on remediation activities.
- Determine when escalation is required and then complete escalation activities.
- Prioritize work efforts based on risk.
Basic Qualifications:
- Four-year degree or greater in field such as Computer Science or Information Technology, or equivalent years of experience.
- Five years’ experience working in IT security.
- Domain knowledge in technical areas, such as:
- UNIX (AIX, Linux, HP-UX, Solaris)
- Windows
- IDS/IPS
- HIPS/HIDS
- Firewall
- Encryptions standards
- Wireless Security
- Ability to understand technical vulnerabilities and recommend technical solutions to application teams
- Ability to handle confidential information
- Strong organizational skills and attention to detail
- Strong communication skills, both verbal and written, including an ability to articulate technical concepts in business terms
- CISSP or CISM certification
Preferred Qualifications:
Familiarity and experience with the Payment Card Industry (PCI) standards
• PMP certification
Working knowledge of Archer, Qualys, Rapid 7, Tenable and/or Slack a plus
Additional Information
All your information will be kept confidential according to EEO guidelines.