-
ID
#23794423 -
Job type
Permanent -
Salary
TBD -
Source
Deloitte -
Date
2021-12-02 -
Deadline
2022-01-31
Third Party Risk - Controls Tester Senior Consultant
Arizona, Tucson, 85701 Tucson USAPermanent
Vacancy expired!
- the different third-party relationships an organization may have across different industries
- the drivers which affect behaviors of business partners, suppliers and customers; and
- the operational processes and controls required by an organization to effectively manage and monitor its third-party relationships.
- Perform ongoing third-party cyber risk assessments to help clients identify and evaluate complex business and technology risks related to their third parties.
- Comply with delivery SLA's and provide periodic status updates including potential risks and delays to the project delivery to project manager.
- Perform validation of sub-controls with third parties as per the validation process set by Deloitte and generate the final report in English language.
- Excellent verbal and written communication skills
- Excellent inter-personal skills
- Independent thinker and resourceful problem solver with an ability to exercise mature judgment
- Takes ownership and drives toward a successful outcome
- Can see the big picture and naturally looks for what other client problems the team can solve
- Ability to work independently and in teams to manage multiple task assignments
- Brings a genuine approach to day-to-day dealings that includes the highest ethical standard
- Acting as a leader in a team environment
- 3+ yrs of relevant experience in information security
- Working knowledge and understanding of information security and risk frameworks/standards (ISO 27001/2, NIST 800 series, PCI-DSS, etc.)
- Demonstrate knowledge of key risk areas such as cyber risk, compliance risk and regulatory risk
- Demonstrate knowledge in one or more of the following cyber risk domains, including:
- Security Governance and Management
- Security Policies and Procedures
- Application Security Controls
- Access Controls
- Network Security Operations
- Security Architectures
- Identity Management
- Disaster Recovery & Business Continuity
- Incident Response
- Risk Management
- Privacy and Data Protection
- Encryption
- Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing
- Ability to travel up to 50% (While up to 50% travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice)
- Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
- Degree in Math, Business, Cyber Security, Computer Science, Data Analytics or related field
- CISSP/CISA (or equivalent)
- Experience with information security audit or assessments
- Good understanding of legal and regulatory requirements around information security and data privacy, such as OCC Bulletin 29, FFIEC, HIPAA Security/Privacy, etc.
- Prior consulting experience
- Experience with internal controls, risk assessments, business process, and internal IT control testing or operational auditing
Vacancy expired!
Report job