Key Accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with our risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers. Experience Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN/WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset life cycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
25/04/2024
Full time
Key Accountabilities Lead the creation, development, and management of OTSNs risk assessment frameworks and principles to support the cyber security decision making processes within ET. Provide expert technical support for the risk assessment of vulnerabilities and deviations from the target state including agreeing mitigating actions within agreed delegated authority. Support the development of cyber security policies and specifications to reduce risk. Improve organisational cyber security maturity and support compliance with the NIS Regulation for the OTSN by managing OTSN registers in line with our risk appetite. Support the business to understand cyber security requirements for OTSN through engagement with projects and design teams on OTSN risks. Support the business to understand cyber security risks through appropriate reporting and communication of current risks and vulnerabilities. Influence security and resilience strategies to accelerate cyber security risk reduction. Support the optimisation of OTSN management strategies in the long-term interests of consumers. Experience Relevant experience risk reporting including leading teams of risk analysts and/or project management. Strong data analytical skills and excellent written and communication skills with the ability to interface comfortably with senior stakeholders. Strong investigation and problem-solving skills, demonstrating autonomy and initiative. Proactive with the ability to work under tight deadline pressures across multiple workstreams. Sound understanding and proven experience of IEC 62443, ISO27000, NIST CSF and audit processes. Experience of introducing changes to specifications or policies that apply to a technical audience. Extensive experience communicating difficult and standard issues associated with areas of expertise in a clear and concise manner both verbally & in writing. Eager to develop their business and technical skills, you will be comfortable breaking new ground and changing the way the business makes decisions. Technical or Specialist Technical understanding of the LAN/WAN Networks and Operational Technology (OT). Detailed understanding of how cyber security risks can manifest within networks, devices, and systems. Understanding of asset management principles, including risk management, decision making, planning, asset life cycle and asset data/information. Experience of using and developing decision making frameworks and tools including economic assessments (NPV, CBA) and whole life asset assessments (WLV) Familiarity with international standards related to cyber security including IEC62443 and IEC62351 Commensurate experience with O365, including excel and preferable Power BI. Experience with MITRE ATT&CK desirable, preferably MITRE ICS.
You will be: Working closely with Business Analysts , supporting the development of good business and technical requirements. Working closely with internal and external technical teams (delivery, development and test) ensuring the built solution aligns to the agreed design. Working with the Project Management Office , aligning to our delivery strategies. Working with Enterprise Architecture , aligning solutions to our technology strategies. Leading the recommendation of appropriate technologies and architectures to meet requirements for particular projects (within the constraints of Project Needs, Business Needs, Enterprise Architecture and Technology). Ensuring technology options are fully costed, and risks and benefits understood to enable effective decision-making by project teams, sponsors and subject matter experts Ensuring clear handover of agreed design to delivery teams and continued architectural support throughout the delivery and cutover of solutions. Ensuring software vendors and outsourced implementation partners meet the required technology specifications to deliver a quality product, adhering to technical governance . Building and maintaining customer and stakeholder relationships that will support our ability to deliver its mission, its reputation and remain sustainable. Being an agent of change through visible ownership, clear and consistent communication and a focus on benefits realisation . Ensuring compliance with appropriate internal and external governance including quality, health, safety, security and environmental legislation, minimising risk to the business and enhancing our reputation. We are now working in a hybrid way, with a mix of remote and office working. We strive to offer a great work life balance - if you are looking for flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in. About the Candidate Knowledge, Experience and Skills Strong solutions architecture skills and experience Knowledge and experience with hybrid cloud and on-prem environments Exposure to the cyber security aspects of solution architectures Well versed with cloud architecture frameworks and design patterns Knowledge of data architecture and exposure to the pros and cons of various forms of data storage and processing Knowledge and experience with MS Azure solution architectures (esp. IaaS, PaaS and SaaS based solutions) Experience in MS Azure Infra, Networks, Storage, Apps and Azure DevOps Experience with Azure Resource Manager, Resource Groups, Virtual Networks, Azure Virtual Machines, Azure Storage types, PowerShell DSC, Azure Automation, Azure Active Directory (Entra), and Azure Site Recovery Experience in developing and deploying cloud native applications using Azure PaaS Capabilities (App Services Plans, Key Vault, Azure Cosmos DB types) Strong communications , listening and influencing skills (diagrams, written and verbal) Experience in creating solution proposals, statement of work (SOW), presenting and articulating Strong business and technical analysis skills Ability to research existing and new solution components and blueprints to match with solution requirements Ability to use a risk based approach to recommendations on architectures Ability to tailor your approach to the given project/business area/vendor Ability to cope with ambiguity , whilst still striving for the required levels of clarity Understanding that "perfect is the enemy of good" Some experience diagramming with UML and utilising blueprint diagrams Exposure to how business works (ie you have sight outside of just the IT department) Personal Qualities Diligent , resilient and self-reliant Adaptable to different teams and environments Passionate for architecting good solutions within given constraints Self-motivated to drive your own learning (esp. in the MS Azure cloud solutions architecture space) Keen to grow knowledge in self and others through mentoring, coaching and sharing experience. Content not to reinvent the wheel, but to use existing solution sets and blueprints where available, and weave together and tailor where needed
23/04/2024
Full time
You will be: Working closely with Business Analysts , supporting the development of good business and technical requirements. Working closely with internal and external technical teams (delivery, development and test) ensuring the built solution aligns to the agreed design. Working with the Project Management Office , aligning to our delivery strategies. Working with Enterprise Architecture , aligning solutions to our technology strategies. Leading the recommendation of appropriate technologies and architectures to meet requirements for particular projects (within the constraints of Project Needs, Business Needs, Enterprise Architecture and Technology). Ensuring technology options are fully costed, and risks and benefits understood to enable effective decision-making by project teams, sponsors and subject matter experts Ensuring clear handover of agreed design to delivery teams and continued architectural support throughout the delivery and cutover of solutions. Ensuring software vendors and outsourced implementation partners meet the required technology specifications to deliver a quality product, adhering to technical governance . Building and maintaining customer and stakeholder relationships that will support our ability to deliver its mission, its reputation and remain sustainable. Being an agent of change through visible ownership, clear and consistent communication and a focus on benefits realisation . Ensuring compliance with appropriate internal and external governance including quality, health, safety, security and environmental legislation, minimising risk to the business and enhancing our reputation. We are now working in a hybrid way, with a mix of remote and office working. We strive to offer a great work life balance - if you are looking for flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in. About the Candidate Knowledge, Experience and Skills Strong solutions architecture skills and experience Knowledge and experience with hybrid cloud and on-prem environments Exposure to the cyber security aspects of solution architectures Well versed with cloud architecture frameworks and design patterns Knowledge of data architecture and exposure to the pros and cons of various forms of data storage and processing Knowledge and experience with MS Azure solution architectures (esp. IaaS, PaaS and SaaS based solutions) Experience in MS Azure Infra, Networks, Storage, Apps and Azure DevOps Experience with Azure Resource Manager, Resource Groups, Virtual Networks, Azure Virtual Machines, Azure Storage types, PowerShell DSC, Azure Automation, Azure Active Directory (Entra), and Azure Site Recovery Experience in developing and deploying cloud native applications using Azure PaaS Capabilities (App Services Plans, Key Vault, Azure Cosmos DB types) Strong communications , listening and influencing skills (diagrams, written and verbal) Experience in creating solution proposals, statement of work (SOW), presenting and articulating Strong business and technical analysis skills Ability to research existing and new solution components and blueprints to match with solution requirements Ability to use a risk based approach to recommendations on architectures Ability to tailor your approach to the given project/business area/vendor Ability to cope with ambiguity , whilst still striving for the required levels of clarity Understanding that "perfect is the enemy of good" Some experience diagramming with UML and utilising blueprint diagrams Exposure to how business works (ie you have sight outside of just the IT department) Personal Qualities Diligent , resilient and self-reliant Adaptable to different teams and environments Passionate for architecting good solutions within given constraints Self-motivated to drive your own learning (esp. in the MS Azure cloud solutions architecture space) Keen to grow knowledge in self and others through mentoring, coaching and sharing experience. Content not to reinvent the wheel, but to use existing solution sets and blueprints where available, and weave together and tailor where needed
Request Technology - Craig Johnson
Chicago, Illinois
*Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Data Governance and Protection Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
22/04/2024
Full time
*Position is bonus eligible* Prestigious Financial Company is currently seeking an Information Data Governance and Protection Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
SAP Delivery Manager - $700-$850/day - 6 months - 3 days a week onsite (South Carolina) The consultant must have skills in data migration, testing or cleansing. The ideal consultant will have experience with S/4HANA, but any SAP experience is relevant. You will work with BPO's to redesign Manufacturing and Supply Chain processes, so coming from a logistics/manufacturing background is a must. Onsite is a non-negotiable, with travel costs included in the total daily margin. We are seeking a dynamic SAP Delivery Manager with a strong background in manufacturing or supply chain management, complemented by expertise in data migration, testing, and S/4HANA transformation. In this role, you will collaborate closely with Business Process Owners (BPO's) to redesign manufacturing processes and drive successful SAP S/4HANA transformations within our organization. Key Responsibilities: Project Leadership: Lead end-to-end project management of SAP S/4HANA transformation initiatives, ensuring alignment with business objectives, timelines, and budgetary constraints. Cross-functional Collaboration: Work closely with BPO partners and internal stakeholders to understand business requirements, identify process improvement opportunities, and redesign manufacturing processes leveraging SAP S/4HANA capabilities. Team Management: Manage multidisciplinary teams comprising SAP consultants, developers, testers, and analysts, fostering a collaborative and results-driven work environment to achieve project goals. Data Migration and Testing: Oversee data migration activities, ensuring seamless transition from Legacy systems to SAP S/4HANA platforms while maintaining data integrity and security. Develop and execute comprehensive testing strategies to validate system functionality and performance. Change Management: Drive organizational change management activities to ensure smooth adoption of new manufacturing processes and SAP S/4HANA solutions. Provide training and support to end users to facilitate transition and maximize system utilization. Continuous Improvement: Champion continuous improvement initiatives within the SAP delivery framework, leveraging industry best practices, lessons learned, and feedback to optimize processes, enhance methodologies, and deliver superior outcomes. Stakeholder Engagement: Serve as the primary point of contact for stakeholders, including business leaders, BPO partners, and IT teams, providing regular updates on project progress, risks, and mitigation strategies. Build and maintain strong relationships to foster collaboration and drive project success. Qualifications: Bachelor's degree in Business Administration, Information Technology, or related field. Master's degree preferred. Extensive experience (minimum 7 years) in SAP project management, with a focus on manufacturing or supply chain modules and S/4HANA transformations. Strong understanding of data migration methodologies, testing strategies, and change management principles within SAP environments. Proven track record of successful collaboration with BPO partners to redesign manufacturing processes and drive business transformation. Excellent leadership, communication, and stakeholder management skills, with the ability to influence and negotiate effectively at all levels of the organization. Relevant certifications such as PMP, SAP Certified Associate, or equivalent are highly desirable SAP Delivery Manager - $700-$850/day - 6 months - 3 days a week onsite (South Carolina) bluewaveSELECT is a global recruitment business that is exclusively focused on SAP. Involved in placing over 4,000 SAP professionals, our team has helped deliver some of the highest-profile SAP programmes for some of the most recognisable brands all over of the world. We are on a mission is to become the world's most trusted SAP recruitment business, delivering our unique wow factor by consistently exceeding expectations for both our customers and our network of SAP professionals. We are an official SAP partner, you will find us on the Ariba Network and we have a 5-Star approval rating on TrustPilot from fellow SAP enthusiasts. Whether this will be your first experience with us, or you are a bluewaveSELECT regular, we look forward to working with you! Disclaimer; We try and contact all applicants to every advert however due to volumes of responses with some adverts we may not be able to get back to you in some cases. If this is the case and you do not hear from us within 5 working days please take it that your application has been unsuccessful. Please note, your profile will be rejected if you do not meet language/legislation criteria. Thank you.
22/04/2024
Project-based
SAP Delivery Manager - $700-$850/day - 6 months - 3 days a week onsite (South Carolina) The consultant must have skills in data migration, testing or cleansing. The ideal consultant will have experience with S/4HANA, but any SAP experience is relevant. You will work with BPO's to redesign Manufacturing and Supply Chain processes, so coming from a logistics/manufacturing background is a must. Onsite is a non-negotiable, with travel costs included in the total daily margin. We are seeking a dynamic SAP Delivery Manager with a strong background in manufacturing or supply chain management, complemented by expertise in data migration, testing, and S/4HANA transformation. In this role, you will collaborate closely with Business Process Owners (BPO's) to redesign manufacturing processes and drive successful SAP S/4HANA transformations within our organization. Key Responsibilities: Project Leadership: Lead end-to-end project management of SAP S/4HANA transformation initiatives, ensuring alignment with business objectives, timelines, and budgetary constraints. Cross-functional Collaboration: Work closely with BPO partners and internal stakeholders to understand business requirements, identify process improvement opportunities, and redesign manufacturing processes leveraging SAP S/4HANA capabilities. Team Management: Manage multidisciplinary teams comprising SAP consultants, developers, testers, and analysts, fostering a collaborative and results-driven work environment to achieve project goals. Data Migration and Testing: Oversee data migration activities, ensuring seamless transition from Legacy systems to SAP S/4HANA platforms while maintaining data integrity and security. Develop and execute comprehensive testing strategies to validate system functionality and performance. Change Management: Drive organizational change management activities to ensure smooth adoption of new manufacturing processes and SAP S/4HANA solutions. Provide training and support to end users to facilitate transition and maximize system utilization. Continuous Improvement: Champion continuous improvement initiatives within the SAP delivery framework, leveraging industry best practices, lessons learned, and feedback to optimize processes, enhance methodologies, and deliver superior outcomes. Stakeholder Engagement: Serve as the primary point of contact for stakeholders, including business leaders, BPO partners, and IT teams, providing regular updates on project progress, risks, and mitigation strategies. Build and maintain strong relationships to foster collaboration and drive project success. Qualifications: Bachelor's degree in Business Administration, Information Technology, or related field. Master's degree preferred. Extensive experience (minimum 7 years) in SAP project management, with a focus on manufacturing or supply chain modules and S/4HANA transformations. Strong understanding of data migration methodologies, testing strategies, and change management principles within SAP environments. Proven track record of successful collaboration with BPO partners to redesign manufacturing processes and drive business transformation. Excellent leadership, communication, and stakeholder management skills, with the ability to influence and negotiate effectively at all levels of the organization. Relevant certifications such as PMP, SAP Certified Associate, or equivalent are highly desirable SAP Delivery Manager - $700-$850/day - 6 months - 3 days a week onsite (South Carolina) bluewaveSELECT is a global recruitment business that is exclusively focused on SAP. Involved in placing over 4,000 SAP professionals, our team has helped deliver some of the highest-profile SAP programmes for some of the most recognisable brands all over of the world. We are on a mission is to become the world's most trusted SAP recruitment business, delivering our unique wow factor by consistently exceeding expectations for both our customers and our network of SAP professionals. We are an official SAP partner, you will find us on the Ariba Network and we have a 5-Star approval rating on TrustPilot from fellow SAP enthusiasts. Whether this will be your first experience with us, or you are a bluewaveSELECT regular, we look forward to working with you! Disclaimer; We try and contact all applicants to every advert however due to volumes of responses with some adverts we may not be able to get back to you in some cases. If this is the case and you do not hear from us within 5 working days please take it that your application has been unsuccessful. Please note, your profile will be rejected if you do not meet language/legislation criteria. Thank you.