Position : Assessment Controller – Exp in Security Control, Security Standards & Cyber Security

Location : Charlotte, NC

Total Hours/week : 40

1^st Shift

Need US Citizens or GC Holders or EAD or H1B

Job Description:

• Need experienced in security control assessment , experience in Security standards such as ISO 27001, NIST, SOX, PCI, Privacy laws, Cyber security control operations.

Technology

• Experienced in Security Control Assessment
• Experience in Security standards such as ISO 27001, NIST, SOX, PCI, Privacy laws
• Knowledge on Cyber security control operations.

Job Responsibility:

• Initiate App Governance Standard Assessment based on Client's Security standards and assessment questionnaire
• Conduct walkthrough assessment session with the application managers.
• Follow up and collect questionnaire responses during the assessment session.
• Review and challenge responses based on Client's security standards and industry best practices.
• Capture additional information to support assessments comments
• Assess the severity of gaps and prioritize based on risk and compliance requirements
• Discuss existing controls and identify potential control gaps.
• Publish draft application assessment report for review to Assessment SMES
• Initiate Follow up emails on 15-30-45-60 days with the application manager for gap remediation status
• For outstanding gaps beyond 60 days, work with respective Business Line Risk Managers to get the record asks documented in Flisk Portal (archer)

Soft skills:

• Excellent communication (oral, written, presentation interpersonal and consultative skills.
• Ability to prioritize work.
• Proactive team player

Qualification:

• Bachelor's degree in computer science, informatic technology and equivalent
• Professional with Industry level certifications such CISSP/CISA or ISO 27001 LA/LI or equivalent.
• Working Experience on Archer IRM (GRC tools) wil be preferred