INFORMATION SECURITY SENIOR ANALYST

Location: Des Moines, IA
Date Posted: 04-15-2018
As an Information Security Senior Analyst you will lead and monitor the evaluation of the inherent risk of projects, new technologies, security incidents and other IT control deficiencies and calculate residual risk considering mitigating factors. In addition, you will:
  • Lead and monitor the identification, analysis and maturation of internal controls in support of business compliance expectations, risk tolerance and in support of the business strategy
  • Coordinate as required to document, monitor and report on the progress of new and outstanding internal and external audit comments, regulatory issues and other IT control deficiencies
  • Lead, evaluate, and continuously improve information technology and business processes to maintain alignment with business plans of medium-high complexity and high-critical risk and to ensure appropriate integration of security controls across people, processes and technologies
 
What Skills You Need
  • Extensive knowledge of security, risk, compliance, privacy and audit processes, methodologies, policies and tools
  • Strong written and verbal communication, including the ability to translate complex ideas into easily understandable language
  • Ability to independently coordinate others to deliver projects, tasks and assignments in an evolving and a maturing environment
  • Experience in forming and driving project scope and deliverable execution
  • Experience facilitating Information Security, Risk and Compliance maturity assessments, e.g. the FFIEC Cyber security Assessment Tool (CAT)
  • 4 or more years of experience participating in and supporting internal and external audits, and/or regulatory reviews, and/or 4+ years' experience working within and participating in the maturation of IT risk and control programs, technology risk registries, and supporting evidence for audits and regulatory reviews, but should have at least some knowledge and experience in each area
  • 4 or more years of Information technology experience and/or applicable business experience
 
Other areas of experience or interest that will help us place you on the right team include:
  • 1 or more years of experience in the execution of Threat and Vulnerability Management practices and solutions
  • Experience leveraging IT Governance, Risk and Compliance (IT GRC) solutions
  • Experience working with banking and financial services regulations
  • Experience defining and documenting controls using COBIT 4.1 or 5.0, COSO
  • Experience defining and documenting controls using the NIST Cyber Security Framework (CSF)
Education
 
Ideally, you will have a degree or equivalent work experience in the following:
 
  • Degree in an Information Technology discipline, or a technical degree or apprenticeship or equivalent experience
Very competitive salary and benefits!
Great company to work for!
Full relocation package is available!
Don't miss out! Apply now and we'll be in touch immediately with more specific details, salary information and to answer any questions!!

This position does NOT provide sponsorship so please do NOT apply if you require sponsorship.  Thank You

KP Recruiting Group 
"Bringing Talent to the Marketplace"

KP Recruiting Group is a well established and very respected recruiting firm.  We have built a strong reputation as a premier resource for providing highly qualified candidates for our clients.  We are very experienced in many industries and have a wide range of clients.  We will serve as your advocate during your career search!  Let us do the work for you!  There is never a fee for our services!



 
or
this job portal is powered by CATS