Analyst Developer

RESPONSIBILITIES

- They will be responsible for the coordination, implementation, execution, control and completion of Security Transformation projects ensuring consistency with the Security Program strategy, commitments and goals.
- Implements and maintains tools, processes, and metrics in support of monitoring policy compliance, standards and applicable compliance requirements for third-party relationships
- The role will work in collaboration with the Business Units, Enterprise Architecture, Legal, Global Purchasing and various other groups to identify and assess information security risks related to various third-party relationships.
- Responsible for performing risk and compliance assessments of third-party service providers with respect to the information security policy, processes and information technology framework
- Understand and be fully fluent in all aspects of the client's Information Security Enterprise Procedures, Standards, technology controls and industry best practices.
- In-depth understanding of and practical experience with information security risk assessment and information security audits
- Maintain an up-to-date task list in the risk assessment queue and provide regular status reports on progress.
- Interface regularly with staff from various departments (eg IT, Operational Risk, Internal Audit, Legal and Compliance), to gather materials and information for security evaluation process, communicating risks found and assist in remediation plan development.
- Assist in the development of additional controls monitoring tools, reports, and processes.
- Provide security advice and guidance to customer contacts
- Interface with various global, regional and business unit groups to provide input and assessment of security tools and assist the local groups with the adoption of the global product suite

SKILLS:

EDUCATION AND EXPERIENCE REQUIRED

- Familiarity with Information Security industry standards and best practices (eg, NIST, ISO, CobiT, ISF)
- 5-7 years experience in Information Security with minimum 2 years hands-on experience in conducting risk assessment
- Proven experience in risk management
- Strong interpersonal skills including organizational skills, conflict management, and strong communication skills (oral, written and presentation).

SKILLS

- Preference Security Systems & Concepts Guru
- Required Security Monitoring/Auditing Guru
- Required Security Standards/Procedures Intermediate
- Preferred Security Risk Management Guru 7.0 Required