- Sigmatech, Inc. (Huntsville, AL)
- Job Descriptions: The Director of Information Security & Risk Management serves as Sigmatech's senior information security executive, reporting directly to ... NIST SP 800-171, and CMMC. This position manages information security as a core business risk , balancing...+ Additional certifications such as CRISC, ISSMP, or CMMC Professional/ Assessor credentials. + Proven track record in building or… more
- Bath & Body Works (Columbus, OH)
- …live more fully. This individual contributor position will lead our global enterprise cyber security risk management program. Cyber Security sits within the ... that Bath & Body Works operates within its Cyber Security risk tolerance and risk ...fixing on committed timeframes. + Work with third party assessor to facilitate annual cybersecurity program maturity assessment to… more
- TECO Energy (Tampa, FL)
- …cyber risk management to identify TECO's needs regarding information security requirements and the management of systems dedicated to monitoring and safeguarding ... Security or IT experience in Information Systems Audit or Assessor , Information Security , systems management, systems administration, information systems … more
- Autodesk (Portland, OR)
- …progressive experience in third-party security or as a principal third-party security assessor , or GRC engineer role, preferably within a technology company ... (eg, GDPR, CCPA, SOC2, NIST, etc) + Liaising with high- risk vendors to understand their security posture,...Liaising with high- risk vendors to understand their security posture, advocate for aligned improvements, and provide advisory… more
- Insight Global (Cary, NC)
- Job Description We're seeking an operational Information Security Risk Analyst to run high-throughput, repeatable information security risk assessments ... analysis → treatment → acceptance without drift. When third-party risk (TPRM) volume spikes or our primary assessor...and Requirements * 2-5 years hands-on experience running information security risk assessments in an operational capacity… more
- Gilead Sciences, Inc. (Foster City, CA)
- …worldwide. The Manager, IT Risk and Compliance is a key member of the Security Risk Compliance (SRC) - DP team and works closely with the legal Privacy ... rider updates) and escalate when appropriate. + Provide assessor / manager related lead activities for Data Privacy...administration, and management of information systems, operational and technical security controls; and security risk … more
- Insight Global (Costa Mesa, CA)
- …usage and handling, internal and external standards, and relevant regulations. The Third-Party Security Assessor is responsible for, but not limited to, the ... for new and existing third-party relationships / engagements Communicating third party risk management / security due diligence requirements to internal and… more
- Amazon (Arlington, VA)
- …team AWS Security Assurance Services LLC, a PCI-QSAC (Payment Card Industry-Qualified Security Assessor company) and HITRUST External Assessor Firm, is a ... we can't achieve. Basic Qualifications - 5+ years experience in IT security , compliance and risk management, data privacy, or security controls. - 2+ years… more
- Warner Bros. Discovery (Atlanta, GA)
- …policy requirements. The ideal candidate will have experience as a PCI Qualified Security Assessor (QSA) with experience across multiple compliance domains in ... 3+ years working in PCI regulatory assessments / requirements; previous PCI Qualified Security Assessor "QSA" certification required. + The ability to be precise… more
- Amazon (Austin, TX)
- …related discipline and three (3) year of experience in the job offered or related security assessor , security engineer, or security program manager ... five (5) years of progressive post-baccalaureate experience in the job offered or related security assessor , security engineer, or security program… more