Atlanta Categories:
Compliance & Risk IS Administrator InComm Holdings
THIS JOB HAS EXPIRED
Responsibilities:ScriptLogics
Elevated Rights Monitoring
ITGRC Tool
Security Assessments
Modulo Monitoring
SIRP SWAT Team
Other Tasks and Responsibilities as Assigned
Supports the Compliance & Risk IS Architect in performing technical audits and compliance monitoring in the following areas:
Application design and deployment
Databases (i.e. Oracle, MS SQL, SQL)
Network devices (i.e. routers, switches)
Security devices (i.e. firewalls, IDS, web application firewall)
Ensures integrity of compliance and risk management tools, such as Modulo Risk Manager
Works with the Compliance Analyst to integrate tools (i.e. Qualys and Service Now) with compliance and risk management tools
Provides first line of technical resolution on compliance and risk support tickets and escalates as needed
Operating systems (i.e. Microsoft, Linux)
Review, document, evaluate, and test manual and automated computer controls throughout the corporate IT environment, including server, application, middleware, and client-side.
Develop solutions (e.g., scripts or tools configuration) to automate controls monitoring.
Conduct risk assessments on business and operational processes, procedures, and policies.
Deliver all project deliverables, including scope, goals, milestones, key success factors, and changes required.
Conduct gap analysis via testing
Review existing documentation of IT controls, business processes, policies, procedures, and management reports for effectiveness and sustainability.
Implement testing methodologies for application development, IT infrastructure, security, and availability.
Execute PCI compliance tests of operating effectiveness for IT systems and internal controls; coordinate required remediation.
Identify control strengths and weaknesses
Apply COBIT, COSO, ITIL, or ISO 27000 frameworks to all documentation and remediation efforts.
Perform reengineering of processes and procedures in need of remediation.
Conduct gap analysis via testing and recommend specific actions to fix gaps in processes and/or process management.
Qualifications:
Audit (SOX, SSAE 16, ISO, HIPAA, & PCI)
Process
Frameworks: NIST, ITIL, COBIT, SOX, PMBOK, AGILE, SDLC, SIX SIGMA, ISO, Risk IT, VAL IT
Formal Education & Certification
Minimum Bachelor?s degree or equivalent combination of education and experience in Information Technology/Information Security.
Certified in one or more of the following security certifications (preferred but not required): CISSP, CISM, GSNA, GIAC GSE, Security+
Certified in any of the following audit/risk management certifications (preferred but not required): CISA, CRISC, CIA
Certified in one or more of the following industry certifications (preferred but not required): MCSE or CCNA
Knowledge & Experience
1 to 2 years security audit experience in the following areas:
Application design and deployment
Databases (i.e. Oracle, MS SQL, SQL)
Network devices (i.e. routers, switches)
Security devices (i.e. firewalls, IDS, web application firewall)
Plus, if experienced in the following tools:
SIEM (McAfee Nitro)
IDS (Palo Alto)
WAF (Imperva)
File Integrity Monitoring (FIM)
Modulo Risk Management
Qualys
Highly experienced in the following:
Hardening of operating systems (i.e. Microsoft (2000, 2003, 2005, 2008), Linux, and SolarisAble to perform code review
Personal Attributes
Ability to collaborate with multidisciplinary teams.
Excellent documentation, interview, and diplomacy skills.
Proven analytical and problem-solving abilities
Excellent verbal, interview, and diplomacy skills.
Can adapt to shifting priorities, demands, and timelines through analytical and problem-solving capabilities.
Reacts to project adjustments and alterations promptly and efficiently.
Adept at conducting research into project-related issues and products.
Ability to effectively prioritize and execute tasks in a high-pressure environment is crucial
| Location: | Atlanta, GA United States |
|---|
THIS JOB HAS EXPIRED
InComm Holdings
Investors: Noro-Moseley PartnersAll Jobs: at InComm Holdings
| Web Site: | web.incomm.com |
|---|---|
| Headquarters: | 00000 United States |
| Industry: | Business Products and Services |
Support InComm Holdings with Social Media services
Find more Compliance & Risk IS Administrator jobs
