| Cybersecurity / Cyber Risk & Compliance @Houston, TX (Onsite) at Houston, Texas, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2235904&uid= Hi Contract Role: Cybersecurity / Cyber Risk & Compliance Exp 11+ Location: Houston, TX (Onsite) Role requirements include: Cybersecurity and/or IT experience IT operations experience desirable, prior cyber security experience not required Passion for quality, thoroughness and ongoing learning required 1+ years experience of designing and delivering large enterprise scale solutions Design thinking, customer service, and analytical skills is a must Communication, organizational skills with good stakeholder management skills Technical writing skills Ability to understand business context and communicate risk and impacts in a clear, concise manner Knowledge of frameworks including NIST CIS, ISO27001 desirable Qualifications Bachelor degree BS Desirable Computer Science, Cyber, or adjacent degrees desirable Preferred: one or more of the following certifications CISSP, DA, GPEN, ITIL, MS Azure Security Engineer, MS Security Operations Analyst, MS Identity and Access Administrator, OSCP, CCNA/CCNP, CCDE, AWS Security Key Interactions: Internal (US/Intl Focused) Digital Teams: Operations, Cyber, Delivery, Risk Asset Managers, operations, technical teams (and other risk owners) IT and OT service and control owners External + Industry peers + Third Party Vendors & Support Providers + Regulatory Agency Representatives Key Deliverables: Effective and optimized cybersecurity controls, identified and managed risks Delivery of documented Paved Road Patterns to accelerate delivery and reduce client risk Project design reviews, Third Party Vendor Cybersecurity Assessments Contribute to Weekly and Monthly reporting Key Decisions: Recommend design changes to meet clients standards Recommend controls design to meet regulations Recommend testing plan of approach to assure critical controls Document initial risk assessments to clients Standards, review with Senior staff Responsibilities: WORK PROCESSES & SYSTEMS Accountable for US/Intl cyber risk reviews, secured by design process Support creation and maintenance of Regional risk to senior operations management TECHNICAL Good understanding of zero trust architecture design principles Ability to technically assess solution designs, cybersecurity risks and controls Maintain (and/or commit to gain) Knowledge of: o IAM, AAA, PKI, Encryption, MFA, TCP/IP, SIEM, IDS/IPS, EDR, proxy, Firewalls, VPNs, DLP, Windows and Linux operating systems, networking, Entra/Active Directory, Scripting languages, OSI Model, monitoring, logging, PAM, SAML/OIDC, SIEM, SASE, API integrations, SDLC, Data Pipelines, AI (LLM) No one person will know everything --Learning and research may be required for each new project/design review. Prior experience in an IT operational role with experience of operating with standards and/or controls preferred Knowledge of current and emerging cybersecurity threats and attacker TTPs is a plus Prior experience with NIST CIS and C2M2 a plus CYBER RISK & REGULATION Responsible for staying abreast of the internal and external standards landscape Provide input into the development and maintenance of the cybersecurity controls Paved roads based on of the evolving regulatory landscape, technical solution set, and Accountabilities Digital Technical Risk Operate the IT Secure By Design process within the region Perform Cyber Security Assessment reviews and consultations Perform IT Cyber Critical Control Pre-Implementation Change reviews and consultations Produce or collaborate with Digital Engineering on publishing reusable Cyber Pre-Approved patterns, reference architectures, templates, guides Support the development of Attack/Threat Model for IT applications, systems, environments and solutions. Cybersecurity IT Control Assurance Perform proactive assurance assessments of the state of IT Control Health. Third Party Cyber Security Risk Management (TPCRM) execute TPCRM process Support and consult on 3 rd Party cybersecurity risk management within the region Perform vendor impact assessments Evaluate and manage critical vendors cybersecurity risk to client Human Risk Support an effective Insider Risk Management program Operate an effective Security Awareness Program Support Cyber Defense in communicating Cyber Alerts to harden the human attack surface Work with Cyber Defense and Digital Engineering to address any high-risk behavior Support training and awareness content creation. Support eDiscovery efforts as needed Cybersecurity Regulation and Compliance Support annual C2M2 Assessments Monitor the regional regulatory landscape and ensure new incoming regulatory obligations and identified and responded to. Ensure all regulatory obligations are registered for monitoring and upkeep Ensure annual regulatory reporting are delivered on time e.g. SEC, AEMO etc. Produce and publish a regional cyber risk report to all asset stakeholders Passport Numb is Mandatory Thanks & regards Acharya Mail: [email protected] -- Keywords: artificial intelligence information technology microsoft Texas Cybersecurity / Cyber Risk & Compliance @Houston, TX (Onsite) [email protected] http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2235904&uid= |
| [email protected] View All |
| 03:51 AM 07-Mar-25 |