For our client, a multinational company in banking and finance, we are looking for a Security Assessment Governance Specialist.
This position will be at the heart of the Security Assessment process and play a key role in ensuring regulatory compliance and professional quality of the security assessment work and providing audit support related to security assessments.
Key Responsibilities
- Establish controls framework for governing information security assessment processes. Operate and continuously monitor this framework, look for areas for improvement and lead initiatives for optimizing it.
- Ensure company’s security assessment criteria are consistent and map company standards correctly.
- Liaise with owners of information security standards to stay on top of changes; provide standard owners feedback and partner with them to align standards with practice.
- Liaise with cyber security architects and regulatory and compliance teams, translate their input into security assessment processes. Support businesses in case of any regulatory noncompliance.
- Identify and publish best practices for company’s security assessment criteria; partner with engineering and development teams to educate them and to gather feedback.
- Ensure security assessment processes are documented and are in line with practice.
- Support any audited partners with respect to security assessment, provide security assessments related deliverables, and represent the Security Assessment team on the audit.
- Manage any audits on Security Assessments, in partnership with risk teams. Partner with other teams to ensure audit readiness for the Security Assessment organization.
- Lead audit preparation efforts related to security assessment processes, identify, investigate problematic cases to find a solution, escalate when needed.
- Liaise with auditors on their expectations regarding security assessment processes.