IRM Associate Director - Corporate Sec..
About the Job
OMJ Job Number/Reference Code: 3344101
Desired Skills/Duties: The Information Risk Management (IRM ) program encompasses a global team that is responsible for ensuring all security risks pertaining to business delivery and Client engagements are managed end to end. The team is a business facing team and engages on a frequent basis with business leaders to identify, analyze and mitigate security risks. The team is also the primary touch point between the Corporate Security Group and Business teams, while supporting the Business on Client security requirements and compliance. We are seeking an Information Risk professional, to be part of Corporate Security Group, and play an integral leadership role in the overall development and management of security and risk in a Client specific engagement for the Business Process Services (BPS) line of business (LoB). Key Responsibilities Strong knowledge of privacy laws, standards, rules and regulations Utilize best practice standards such as ISO 27001, SOC, NIST, PCI Ensure process adheres to legal & regulatory requirements as applicable to the scope of work. Ensure adherence to the Client Contractual Requirements of the Process/ Function. Ensure implementation security architecture and strategies inline with the business risk and client expectation on the engagement Facilitate regular assessments to identify comprehensive risks, any non-compliance or contractual breaches and encourage continuous improvements. Align and integrate the Information Security strategy for the engagement with the business goals Monitor and evaluate security measures to protect against reasonably anticipated threats or hazards to the privacy, security or integrity of Client sensitive information for the LoB Establish, communicate, and maintain a charter for the security management function for the engagement and BPS LoB Provide consolidated risk dashboard to the management and the business unit leaders Lead and collaborate directly with the Clients senior management; delivery, practice development and thought leadership related to Information Security solution development, assessment and implementation Demonstrates proven knowledge of system security, controls or information security management environment based on the risks, specifically on the following information se... Click here to view the full job posting on our career site VEVRAA Federal Contractor Request Priority Protected Veteran Referrals EOE -Veteran /Disabled/Minority/AA/F/M/SO