You are successfully logged out of your my randstad account

You have successfully deleted your account

information security program analyst.

pozíció részletei

összegzés

    pozíció részletei
    Cégleírás / Organisation/Department

    Our Client is looking for an Information Security (IS) Program Analyst. This position will be reporting to the Application Security Management Governance Lead. The analyst role will be responsible for governance of the applications security testing standards and processes. The position is a cross-functional role that will be responsible for various Application Security Management program initiatives. This position will touch all aspects of the group’s initiatives and all levels of management in ensuring the timely and efficient administration of its objectives and projects. The successful candidate will liaise with internal groups and our regional partners to ensure that program deliverables are met. The analyst is a strong analytical thinker, team player and an effective communicator.

    Pozíció leírása / Job description

    • Governance of Application System Testing standards and policies - review the standards and make enhancements based on application assets
    • Identify compliance objectives and map program deliverables to the requirements
    • Document scope of assets to be included in the system security testing standard for vulnerability assessments
    • Collaborate with business and enterprise architecture team to implement changes required to identify assets for vulnerability assessments scoping
    • Document business requirements related to system enhancements and submit for reviews and approvals
    • Map out process flows for controls in systems and review for improvements to make controls more effective
    • Monitor vulnerability assessment exemption and exception requests and process based on documented system testing standards and policies
    • Collect information for generating and communicating responses for internal audit questions and deliverables promptly
    • Design and implement a solution for performance measurements on effectiveness of controls and overall vulnerability assessment program
    • Analyze trends on assets security health posture and report using visualization tools for program review with management and stakeholders
    • Provide timely, accurate, and actionable reporting on application vulnerability activity, trends, service levels, and areas of concern to senior management
    • Document and standardize business rules for accurate compliance measurements and tracking metrics based on application security testing standard
    • Work with the Metrics reporting team to enhance and refine the metrics and key performance indicators reported to senior management and external regulatory agencies
    • Develop User acceptance test plans for testing changes to system enhancements that impact governance and compliance
    • Serve as a Program SME and drive open issues to a closure with appropriate resolution
    • Update power point presentations monthly and quarterly for application security program reviews
    • Train and mentor team members as needed
    • Weekly and Monthly Status reporting for the program

    Elvárások / Requirements
    • 3+ years of experience in information security or related technology experience 
      • Experience working in an information security team defining, revising and implementing corporate information security policies
      • Experience analyzing security assessments and creating metrics visualizations for analytics
      • Experience reviewing application security testing results from various testing tools
      •Project Management experience a plus
      • Experience with governance and implementation of security policies, standards, procedures, programs, plans and processes
      • Experience coordinating initiatives related to process control design and testing
      • Professional Certifications in Information Security domain a plus
      • Demonstrate an aptitude to develop and implement application security strategies and plans based on the firm's standards
      • Familiarity with security standards such as OWASP, NIST, PCI DSS, etc.
      • Consistently demonstrates clear and concise written and verbal communication
      • Proven analytical, influencing and relationship management skills
    Amit kínálunk / Offer
    • Competitive salary;
    • Multinational work environment;
    • Remote working opportunity;
    Kapcsolattartó / Information

    Rác Ildikó

    Deme András

    andras.deme@randstad.hu

    Cégleírás / Organisation/Department

    Our Client is looking for an Information Security (IS) Program Analyst. This position will be reporting to the Application Security Management Governance Lead. The analyst role will be responsible for governance of the applications security testing standards and processes. The position is a cross-functional role that will be responsible for various Application Security Management program initiatives. This position will touch all aspects of the group’s initiatives and all levels of management in ensuring the timely and efficient administration of its objectives and projects. The successful candidate will liaise with internal groups and our regional partners to ensure that program deliverables are met. The analyst is a strong analytical thinker, team player and an effective communicator.

    Pozíció leírása / Job description

    • Governance of Application System Testing standards and policies - review the standards and make enhancements based on application assets
    • Identify compliance objectives and map program deliverables to the requirements
    • Document scope of assets to be included in the system security testing standard for vulnerability assessments
    • Collaborate with business and enterprise architecture team to implement changes required to identify assets for vulnerability assessments scoping
    • Document business requirements related to system enhancements and submit for reviews and approvals
    • Map out process flows for controls in systems and review for improvements to make controls more effective
    • Monitor vulnerability assessment exemption and exception requests and process based on documented system testing standards and policies
    • Collect information for generating and communicating responses for internal audit questions and deliverables promptly
    • Design and implement a solution for performance measurements on effectiveness of controls and overall vulnerability assessment program
    • Analyze trends on assets security health posture and report using visualization tools for program review with management and stakeholders
    • Provide timely, accurate, and actionable reporting on application vulnerability activity, trends, service levels, and areas of concern to senior management
    • Document and standardize business rules for accurate compliance measurements and tracking metrics based on application security testing standard
    • Work with the Metrics reporting team to enhance and refine the metrics and key performance indicators reported to senior management and external regulatory agencies
    • Develop User acceptance test plans for testing changes to system enhancements that impact governance and compliance
    • Serve as a Program SME and drive open issues to a closure with appropriate resolution
    • Update power point presentations monthly and quarterly for application security program reviews
    • Train and mentor team members as needed
    • Weekly and Monthly Status reporting for the program

    Elvárások / Requirements
    • 3+ years of experience in information security or related technology experience 
      • Experience working in an information security team defining, revising and implementing corporate information security policies
      • Experience analyzing security assessments and creating metrics visualizations for analytics
      • Experience reviewing application security testing results from various testing tools
      •Project Management experience a plus
      • Experience with governance and implementation of security policies, standards, procedures, programs, plans and processes
      • Experience coordinating initiatives related to process control design and testing
      • Professional Certifications in Information Security domain a plus
      • Demonstrate an aptitude to develop and implement application security strategies and plans based on the firm's standards
      • Familiarity with security standards such as OWASP, NIST, PCI DSS, etc.
      • Consistently demonstrates clear and concise written and verbal communication
      • Proven analytical, influencing and relationship management skills
    Amit kínálunk / Offer
    • Competitive salary;
    • Multinational work environment;
    • Remote working opportunity;
    Kapcsolattartó / Information

    Rác Ildikó

    Deme András

    andras.deme@randstad.hu