What are the responsibilities and job description for the Third party risk and controls management Engineer position at Thoughtwave Software and Solutions?
Job Details
Role:Third party risk and controls management Engineer
Duration: 12 months
Locations: Hybrid,Plano, TX (Last option is Washinton, DC)
Must have : Tech Expertise in Cyber Security, Cloud Security and IAM
Must Have: Cloud Security, Third Party Risk, Gap analysis and risk assessments, Operational/Data Risk, Application Controls, App Security, App Development with Secure code and Static Code.
-IAM/PAM and Penetration Testing is a huge Plus
Certifications: SANS, Security (Plus), CISSP or similar
Hybrid Onsite Schedule: (3) Days flexible
Interview Process: (2) Rounds
Job Description:
Strong working knowledge of operations practices, risk management processes, principles, architectural requirements and threats and vulnerabilities in the context of Cybersecurity as well as incident response handling methodologies as they apply.
Strong knowledge of national and international laws, regulations, policies and ethics as they relate to Cybersecurity and specifically in the financial industry.
Expert in their field; keeps technical skills current, participates in multiple forums
May be multiskilled across the full range of team functions.
Strong understanding of Agile, with the ability to work under at least one of the common frameworks.
Knowledge of what constitutes a network attack and the relationship to both threats and vulnerabilities along with the ability to identify systemic security issues.
Provides indepth analysis of vulnerabilities, threats, designs, procedures and architectural design with focus on recommendations for enhancements or remediation with skill in using network analysis tools.
Compliance required for local, country, and/or region specific standards for credentials, certifications and/or training.
Additional Skills:
Cloud security, identify and access management, third party risk management, vulnerability management.
Roles and Responsibilities:
The third party risk and controls management analyst will be responsible for conducting deep dive technical risk reviews of clients highest risk suppliers.
Working across multiple systems of record, this role will identify areas of technical risk to the business by analyzing IT architectures, security controls, evolving industry practices, etc. and document where controls do not exist or need improvement.
These technical deepdive reviews will then been evaluated against technical and business resilience planning, incident response plans, and cyber intelligence reporting.
Thanks and Regards
Ramyasree
US IT RECRUITER
Thought wave Software and Solutions
314 N. Lake St, Suite 6, Aurora IL 60506
Desk:
Email:
LinkedIn:
------------
A Certified Minority Business Enterprise, Disadvantaged Business Enterprise, SAM.gov, SOC2 & ISO2005,
Vendors for:
STATES: IL, PA, TN, AK, OR, CT, GA, VA, ID, IA, UT, FL, MN & CO,
NATIONAL LABS: ARGONNE & FERMI,
COUNTIES: HENNEPIN, MN, FULTON & GA,
PUBLIC SCHOOLS: ATLANTA
Duration: 12 months
Locations: Hybrid,Plano, TX (Last option is Washinton, DC)
Must have : Tech Expertise in Cyber Security, Cloud Security and IAM
Must Have: Cloud Security, Third Party Risk, Gap analysis and risk assessments, Operational/Data Risk, Application Controls, App Security, App Development with Secure code and Static Code.
-IAM/PAM and Penetration Testing is a huge Plus
Certifications: SANS, Security (Plus), CISSP or similar
Hybrid Onsite Schedule: (3) Days flexible
Interview Process: (2) Rounds
Job Description:
Strong working knowledge of operations practices, risk management processes, principles, architectural requirements and threats and vulnerabilities in the context of Cybersecurity as well as incident response handling methodologies as they apply.
Strong knowledge of national and international laws, regulations, policies and ethics as they relate to Cybersecurity and specifically in the financial industry.
Expert in their field; keeps technical skills current, participates in multiple forums
May be multiskilled across the full range of team functions.
Strong understanding of Agile, with the ability to work under at least one of the common frameworks.
Knowledge of what constitutes a network attack and the relationship to both threats and vulnerabilities along with the ability to identify systemic security issues.
Provides indepth analysis of vulnerabilities, threats, designs, procedures and architectural design with focus on recommendations for enhancements or remediation with skill in using network analysis tools.
Compliance required for local, country, and/or region specific standards for credentials, certifications and/or training.
Additional Skills:
Cloud security, identify and access management, third party risk management, vulnerability management.
Roles and Responsibilities:
The third party risk and controls management analyst will be responsible for conducting deep dive technical risk reviews of clients highest risk suppliers.
Working across multiple systems of record, this role will identify areas of technical risk to the business by analyzing IT architectures, security controls, evolving industry practices, etc. and document where controls do not exist or need improvement.
These technical deepdive reviews will then been evaluated against technical and business resilience planning, incident response plans, and cyber intelligence reporting.
Thanks and Regards
Ramyasree
US IT RECRUITER
Thought wave Software and Solutions
314 N. Lake St, Suite 6, Aurora IL 60506
Desk:
Email:
LinkedIn:
------------
A Certified Minority Business Enterprise, Disadvantaged Business Enterprise, SAM.gov, SOC2 & ISO2005,
Vendors for:
STATES: IL, PA, TN, AK, OR, CT, GA, VA, ID, IA, UT, FL, MN & CO,
NATIONAL LABS: ARGONNE & FERMI,
COUNTIES: HENNEPIN, MN, FULTON & GA,
PUBLIC SCHOOLS: ATLANTA
Process Engineer
Third Coast -
Pearland, TX
Vice President of Sales - Third Party Collections
InteLogix -
Houston, TX
Tech Risk and Controls Director
JPMorgan Chase -
Houston, TX