Information Security Specialist, Controls Development

INFORMATION SECURITY SPECIALIST FOSTER CITY, CA 12 MONTH CONTRACT

At COMPUCOM, we set you up for job success right from the start. Our precision recruiting process aligns the right fit for the right people.

Our high-visibility client is looking for a candidate who understands security requirements such as operating systems, database systems, networking, SSDLC, security architectures. CISA, CRISC and/or CISSP certifications will be considered a plus..*Must sit onsite in Foster City.

The role provides knowledge leadership as a member of the team developing a new information security controls framework. The controls framework is based on generally accepted industry standards and best practices. This individual will provide expert knowledge to other team members regarding control framework standards and best practices, will have effective research techniques to interpret the intent and security rationale for each control, and will provide appropriate justifications for variance from baseline standards. This individual will also be highly motivated with the ability to drive continuous improvement throughout the existing Controls Management functions.

JOB SCOPE

- Responsible for high quality-timely service delivery, responsive customer support, service oriented customer communications
- Provide expert knowledge regarding information security regulations, requirements and best practices, the control framework structure, all information security controls, the security rationale for each, and the state of ongoing compliance
- Actively collaborate with other teams within throughout Information Security, throughout IT, and control owners and stakeholders throughout the organization
- Plan and monitor of tasks and schedules
- Develop and maintain of information security controls and associated data

QUALIFICATIONS

- Bachelor's degree or equivalent experience
- Minimum of 5-7 years information security experience
- Prefer CISA, CRISC and/or CISSP certifications
- In-depth knowledge of Governance, Risk, and Compliance (GRC)
- In-depth knowledge of information security regulations, industry requirements and generally accepted best practices such as FFIEC, GLBA, PCI DSS, ISO, NIST and CIS Benchmarks
- Must be able to understand security requirements such as operating systems, database systems, networking, SSDLC, security architectures
- Sound planning, organizational and problem solving skills
- Interpersonal, collaboration and facilitation skills
- Effective communications skills (both verbal and written)
- Demonstrated ability to meet deadlines and commitments in an environment the requires multitasking among concurrent activities and frequent shifting of priorities
- Ability to convey security concepts to both technical and non-technical audiences

*CompuCom supports Employment Equity and Diversity*Dallas-based CompuCom Systems, Inc. is a leading provider of end-user enablement, service experience management, and cloud technology services to Fortune 1000 companies. CompuCom partners with enterprises to develop smarter ways they can work, grow and produce value for their business. Founded in 1987, privately held CompuCom has approximately 11,500 associates and supports more than 4 million end users in North America.