Information Security Analyst £60,000 - £70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the Information Security Analyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as they look to add a new member to the Information Security team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is met Generate metrics/dashboard for management reviews Assist in overseeing the ISMS from a GRC perspective Provide Information Security awareness training to tech & non-tech teams Plan audits, risk assessments and control implementations related to ISO27001 Provide a sound understanding of Cloud Security & Cloud Infrastructure principles/controls Assist the SecOps team with incident handling, response and escalations, as well as ensuring processes are documented in line with ISO27001 Manage technical risks via vulnerability management oversight & gap analysis, whilst also overseeing DLP alerts and creating reports What skills do you need as an Information Security Analyst? ISO27001 NIST Supplier onboarding Generating metrics & dashboards The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of colleagues, with inclusion at the forefront of their working culture. Though working in a small team, the business are dedicated to providing the training and development needed for you to be successful within the role - Whilst also giving you the chance to be deeply involved in a range of upcoming projects.
16/05/2024
Full time
Information Security Analyst £60,000 - £70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the Information Security Analyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as they look to add a new member to the Information Security team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is met Generate metrics/dashboard for management reviews Assist in overseeing the ISMS from a GRC perspective Provide Information Security awareness training to tech & non-tech teams Plan audits, risk assessments and control implementations related to ISO27001 Provide a sound understanding of Cloud Security & Cloud Infrastructure principles/controls Assist the SecOps team with incident handling, response and escalations, as well as ensuring processes are documented in line with ISO27001 Manage technical risks via vulnerability management oversight & gap analysis, whilst also overseeing DLP alerts and creating reports What skills do you need as an Information Security Analyst? ISO27001 NIST Supplier onboarding Generating metrics & dashboards The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of colleagues, with inclusion at the forefront of their working culture. Though working in a small team, the business are dedicated to providing the training and development needed for you to be successful within the role - Whilst also giving you the chance to be deeply involved in a range of upcoming projects.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
Your new company Working for a market leading group of companies with a strong focus on security across the globe. Providing sector specific technology to provide tailored solutions. Your new role Responsible for managing Networking, IT Infrastructure, Cloud solutions and delivering end-user support to a range of desktop, mobile and business software applications. Leading with your expert knowledge of support teams, including infrastructure engineers and service desk professionals to deliver excellent technical services. The position will take the lead in working with 3rd party vendors and the wider internal teams to support in consulting and the delivery of the company's IT strategy. What you'll need to succeed A strong understanding of operating in an ITIL environment with excellent networking experience alongside support for Microsoft solutions. Capable and hands-on experience with Cisco network deployments (CCNA/CCNP Desirable) Demonstrable proficiency with Azure and On-Prem Infrastructure Experience with managing teams to ensure KPIs and SLAs are achieved & exceeded and to support their development. Able to share your expert knowledge with the wider team to develop an effective service. Firewall deployment, particularly across SD-WAN solutions. Strong understanding of Cybersecurity to maintain system integrity. Delivering end-user support to a range of desktop, mobile and business software applications. What you'll get in return Salary of up to £55,000 DOE Elements of Hybrid with a 3 in 2 from home split Options for Flexible working hours provided Core hours are covered. Chance to improve your knowledge and personal development. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
15/05/2024
Full time
Your new company Working for a market leading group of companies with a strong focus on security across the globe. Providing sector specific technology to provide tailored solutions. Your new role Responsible for managing Networking, IT Infrastructure, Cloud solutions and delivering end-user support to a range of desktop, mobile and business software applications. Leading with your expert knowledge of support teams, including infrastructure engineers and service desk professionals to deliver excellent technical services. The position will take the lead in working with 3rd party vendors and the wider internal teams to support in consulting and the delivery of the company's IT strategy. What you'll need to succeed A strong understanding of operating in an ITIL environment with excellent networking experience alongside support for Microsoft solutions. Capable and hands-on experience with Cisco network deployments (CCNA/CCNP Desirable) Demonstrable proficiency with Azure and On-Prem Infrastructure Experience with managing teams to ensure KPIs and SLAs are achieved & exceeded and to support their development. Able to share your expert knowledge with the wider team to develop an effective service. Firewall deployment, particularly across SD-WAN solutions. Strong understanding of Cybersecurity to maintain system integrity. Delivering end-user support to a range of desktop, mobile and business software applications. What you'll get in return Salary of up to £55,000 DOE Elements of Hybrid with a 3 in 2 from home split Options for Flexible working hours provided Core hours are covered. Chance to improve your knowledge and personal development. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.
NO SPONSORSHIP Manager, Internal Audit Information Technology & Security SALARY: $130k - $165k plus 15% bonus LOCATION: Dallas, TX 3 days in office 2 days remote Looking for a Manager of audit of information technology and security. You will manage a staff over Microsoft applications, archer and GRC. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Qualifications Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Familiarity with: CyberArk, Splunk, SailPoint Familiarity with: ServiceNow, Jira, Confluence, GitHub Bachelor's degree 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
14/05/2024
Full time
NO SPONSORSHIP Manager, Internal Audit Information Technology & Security SALARY: $130k - $165k plus 15% bonus LOCATION: Dallas, TX 3 days in office 2 days remote Looking for a Manager of audit of information technology and security. You will manage a staff over Microsoft applications, archer and GRC. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Qualifications Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Familiarity with: CyberArk, Splunk, SailPoint Familiarity with: ServiceNow, Jira, Confluence, GitHub Bachelor's degree 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
NO SPONSORSHIP Manager, Internal Audit Information Technology & Security SALARY: $130k - $165k plus 15% bonus LOCATION: Chicago, IL 3 days in office 2 days remote Looking for a Manager of audit of information technology and security. You will manage a staff over Microsoft applications, archer and GRC. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Qualifications Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Familiarity with: CyberArk, Splunk, SailPoint Familiarity with: ServiceNow, Jira, Confluence, GitHub Bachelor's degree 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
14/05/2024
Full time
NO SPONSORSHIP Manager, Internal Audit Information Technology & Security SALARY: $130k - $165k plus 15% bonus LOCATION: Chicago, IL 3 days in office 2 days remote Looking for a Manager of audit of information technology and security. You will manage a staff over Microsoft applications, archer and GRC. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Qualifications Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). Consulting and/or accounting firm experience. Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software Familiarity with: CyberArk, Splunk, SailPoint Familiarity with: ServiceNow, Jira, Confluence, GitHub Bachelor's degree 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Rapid Response Technician Location: London Waterloo Duration: 6 months Rate: £30.00 per hour (umbrella) Our London Waterloo based client have an opportunity for a Rapid Response Technician to join the team on an initial 6 month contract basis (shift work 3 on/4 off - alternating night/day shifts) The primary purpose of the role is to undertake faulting activities to restore service and systems mainly within the Connect Network within Contractual Service Levels and to provide technical support to sustain the integrity of the Connect system. The post holder will undertake all technical activities in accordance with the specific roles and responsibilities of the post to ensure the use of best practices & continuous improvement in all areas of Service provision/delivery and HSQE activities. Key Responsibilities and Tasks: Reporting to the Duty Operations Manager the post holder will contribute to a high performance team culture, whilst implementing a high level of safety practices within daily duties. The post holder will consistently offer First class service to the customer, support the service delivery team to deliver financial results in line with company expectations. The post holder will be required to achieve KPIs, that minimise exposure to service credits, abatement payments for spares, logical channels, and repeat failures incurred on the Connect Contract. The role is customer facing, earning respect from end users, LU Connect and internal colleagues. The post holder will lead by example in his/her application of the core company values, company goals and continuous improvement initiatives. The role is high profile, pressurised and will require out of normal hours commitment (alternating weekly day/night shifts - 3 on 4 off) 1. Work efficiently and effectively to restore service, highlight and escalate issues or deficiencies arising, share good practice and lessons learnt to promote service improvement. Provide all feedback, and matters arising for escalation and review. Maintain regular and consistent dialogue with the delivery team to update on faulting task progress. 2. Ensure a safe system of work is in place and dynamic risk assessments are completed and recorded. Compile Site Specific Safety Information as required, or, subject to certification, undertake specific on site duties. 3. Undertake maintenance activities as required. 4. Carry out equipment reprogramming and install latest equipment configuration as required. 5. Understand and interpret design documentation and work instructions. 6. On occasion maybe required to lead a team of technicians to ensure the application of best practice in the provision of a safe, comprehensive, faulting activities. 7. Ensure that all relevant policies, processes and procedures are adhered too. 8. Maintain physical and cyber security, champion good housekeeping values at all times. Skills: Essential Must be able to drive and hold a valid driving licence Understands and can apply basic electrical principles to faulting activities Proficient in the application and interpretation of Telecom Transmission Systems, specifically on the Connect Network, Systems, architecture and component parts. Good overall technical knowledge of Tetra Radio, Video and Transmission systems. Good technical understanding of SDH and PDH Transmission systems. Good technical knowledge Tetra Radio Systems, architecture and component parts. Good technical understanding of CCTV services (Video) and specifically of the ATM Video Systems. A basic understanding of Internet protocol (IP) and specifically Multi Services Networks/Nokia products A good technical understanding of testing on multicore copper cables. Demonstrates a good understanding and interpretation of UPS systems. Knowledge of London Underground and Network Rail standards. Working to strict Health &Safety standards. The candidate will require Security Clearance. Experience: Essential Demonstrable experience as a 1st line or 2nd Line Technician. Desirable The post holder is likely to have demonstrable experience in Operational Communications and/or points and trackside equipment and/or power systems and/or Signalling Systems. Values & Behaviours: Customer Trust One Team, One Thales Developing our People Accountable and Committed to Excellence Agile and Innovative Interested? - Hit Apply
14/05/2024
Project-based
Rapid Response Technician Location: London Waterloo Duration: 6 months Rate: £30.00 per hour (umbrella) Our London Waterloo based client have an opportunity for a Rapid Response Technician to join the team on an initial 6 month contract basis (shift work 3 on/4 off - alternating night/day shifts) The primary purpose of the role is to undertake faulting activities to restore service and systems mainly within the Connect Network within Contractual Service Levels and to provide technical support to sustain the integrity of the Connect system. The post holder will undertake all technical activities in accordance with the specific roles and responsibilities of the post to ensure the use of best practices & continuous improvement in all areas of Service provision/delivery and HSQE activities. Key Responsibilities and Tasks: Reporting to the Duty Operations Manager the post holder will contribute to a high performance team culture, whilst implementing a high level of safety practices within daily duties. The post holder will consistently offer First class service to the customer, support the service delivery team to deliver financial results in line with company expectations. The post holder will be required to achieve KPIs, that minimise exposure to service credits, abatement payments for spares, logical channels, and repeat failures incurred on the Connect Contract. The role is customer facing, earning respect from end users, LU Connect and internal colleagues. The post holder will lead by example in his/her application of the core company values, company goals and continuous improvement initiatives. The role is high profile, pressurised and will require out of normal hours commitment (alternating weekly day/night shifts - 3 on 4 off) 1. Work efficiently and effectively to restore service, highlight and escalate issues or deficiencies arising, share good practice and lessons learnt to promote service improvement. Provide all feedback, and matters arising for escalation and review. Maintain regular and consistent dialogue with the delivery team to update on faulting task progress. 2. Ensure a safe system of work is in place and dynamic risk assessments are completed and recorded. Compile Site Specific Safety Information as required, or, subject to certification, undertake specific on site duties. 3. Undertake maintenance activities as required. 4. Carry out equipment reprogramming and install latest equipment configuration as required. 5. Understand and interpret design documentation and work instructions. 6. On occasion maybe required to lead a team of technicians to ensure the application of best practice in the provision of a safe, comprehensive, faulting activities. 7. Ensure that all relevant policies, processes and procedures are adhered too. 8. Maintain physical and cyber security, champion good housekeeping values at all times. Skills: Essential Must be able to drive and hold a valid driving licence Understands and can apply basic electrical principles to faulting activities Proficient in the application and interpretation of Telecom Transmission Systems, specifically on the Connect Network, Systems, architecture and component parts. Good overall technical knowledge of Tetra Radio, Video and Transmission systems. Good technical understanding of SDH and PDH Transmission systems. Good technical knowledge Tetra Radio Systems, architecture and component parts. Good technical understanding of CCTV services (Video) and specifically of the ATM Video Systems. A basic understanding of Internet protocol (IP) and specifically Multi Services Networks/Nokia products A good technical understanding of testing on multicore copper cables. Demonstrates a good understanding and interpretation of UPS systems. Knowledge of London Underground and Network Rail standards. Working to strict Health &Safety standards. The candidate will require Security Clearance. Experience: Essential Demonstrable experience as a 1st line or 2nd Line Technician. Desirable The post holder is likely to have demonstrable experience in Operational Communications and/or points and trackside equipment and/or power systems and/or Signalling Systems. Values & Behaviours: Customer Trust One Team, One Thales Developing our People Accountable and Committed to Excellence Agile and Innovative Interested? - Hit Apply
Manager, Internal Audit - IT/Security Salary: open + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ years of experience in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software. Security tools such as: CyberArk, Splunk, SailPoint Change management tools such as: ServiceNow, Jira, Confluence, GitHub Preferred Databases such as: Oracle, DB2, SQL Cloud-based solutions: AWS, Azure, Oracle Cloud, Workday Relevant Certifications Responsibilities Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality, and auditee experience.
10/05/2024
Full time
Manager, Internal Audit - IT/Security Salary: open + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ years of experience in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software. Security tools such as: CyberArk, Splunk, SailPoint Change management tools such as: ServiceNow, Jira, Confluence, GitHub Preferred Databases such as: Oracle, DB2, SQL Cloud-based solutions: AWS, Azure, Oracle Cloud, Workday Relevant Certifications Responsibilities Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality, and auditee experience.
Manager, Internal Audit - IT/Security Salary: open + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ years of experience in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software. Security tools such as: CyberArk, Splunk, SailPoint Change management tools such as: ServiceNow, Jira, Confluence, GitHub Preferred Databases such as: Oracle, DB2, SQL Cloud-based solutions: AWS, Azure, Oracle Cloud, Workday Relevant Certifications Responsibilities Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality, and auditee experience.
10/05/2024
Full time
Manager, Internal Audit - IT/Security Salary: open + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 5+ years of experience in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Microsoft Office applications Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software. Security tools such as: CyberArk, Splunk, SailPoint Change management tools such as: ServiceNow, Jira, Confluence, GitHub Preferred Databases such as: Oracle, DB2, SQL Cloud-based solutions: AWS, Azure, Oracle Cloud, Workday Relevant Certifications Responsibilities Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality, and auditee experience.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
10/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
10/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a Manager of Internal Audit and Information Security. Candidate will manage independent assessments of the Information Technology and Security environment, risk management, and other objectives as needed. The role is responsible for defining the proper scope, approach, and quality are integrated into each audit and that regulatory, operational, and strategic risks are sufficiently mitigated by Management. This role will also be required to present recommendations for improvements to the Internal Audit Leadership and finding owners. In addition, as a manager you will own the coaching of your direct reports, developing their skills and supporting their career development. Responsibilities: Aid in the development of the risk assessment and comprehensive audit plan on an annual basis. Lead multiple audits and validations simultaneously. Defining and leading the execution of audit projects in accordance with the annual audit plan. Owning the audit quality, accuracy of results, and delivery in a timely manner. Leading audits related to organization changes including business requirements definitions, technology implementations (eg, changes to the supported business processes), engagement and alignment of change initiatives to business objectives. Ability to clearly articulate professional principles and standards (eg, AICPA, IIA IPPF, COBIT, NIST CSF) and the relevancy to risk management and impact on policies and procedures. In addition, leveraging these principles and standards to test and evaluate corporate risk management processes and controls. Maintaining an understanding of policies, procedures, standards, and supporting technologies, and educating staff accordingly, to effectively identify potential risks and alternatives to mitigate risk exposure leveraging leading practices. Keeping current on leading practices and emerging risks within the financial services industry and making recommendations for improvements as necessary. Serving as a liaison with external parties and regulators to facilitate timely and efficient external reviews, knowledge transfer, and controls and process education. Supporting other department-wide activities such as but not limited to peer reviews of audit deliverables, policy and procedure development and refinement, etc. Lead and implement strategic initiatives related to new audit programs/processes, technology or other initiatives. Planning, leading and reporting for risk-based and special request audit assignments. Proactively identifying regulatory, operational, and/or strategic risks to the organization and deliver recommendations for improvements to senior leadership. Developing and maintaining effective relationships with business groups and leadership and partnering with management. Effectively lead audit staff, providing direction, clearly defined performance expectations, coaching and feedback, and recognition/motivation. Providing oversight and coaching to the team, both internal and/or co-sourced resources, confirming the delivery, quality and auditee experience. Qualifications: Ability to communicate clearly and effectively, both orally and in writing, including the ability to handle potentially sensitive situations and discussions. Strong problem solving and analytical capabilities. Demonstrated ability to gather, analyze, and evaluate facts, and prepare and present concise oral and written reports. Ability to work independently or as part of a team, prioritizing multiple audit assignments to simultaneously complete each in a timely fashion. Experience working in a complex, fast paced environment. Experience using the principles, practices, and techniques involved in conducting audits in accordance with the requirements set forth in the International Standards for the Professional Practice of Internal Auditing published by the Institute of Internal Auditors (IIA). [Preferred] Consulting and/or accounting firm experience. [Preferred] Experience in Financial Services/Security Industry and working with regulations such as Regulation Systems Compliance and Integrity (Reg SCI). Technical Skills: [Required] Microsoft Office applications [Required] Proficiency using Archer or other audit or Governance Risk and Compliance (GRC) software [Required] Familiarity with security tools such as: CyberArk, Splunk, SailPoint [Required] Familiarity with change management tools such as: ServiceNow, Jira, Confluence, GitHub [Preferred] Familiarity with databases such as: Oracle, DB2, SQL [Preferred] Familiarity with cloud based solutions: AWS, Azure, Oracle Cloud, Workday Education and/or Experience: [Required] Bachelor's degree (or equivalent) in Information Technology, Computer Science, Computer Engineering, Accounting, Finance, Business Administration, or related field. [Required] 5+ years of experience (audit-related) in conducting risk-based Information Technology and Security audits and projects, cyber security reviews, and internal audits. Certificates or Licenses: [One of these required] Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certification in Risk Management Assurance (CRMA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or equivalent.
IT Support Team Leader- Harrogate, North Yorkshire Skills: Office365, Windows 2016/2019 Server, LANs/WANs/VPN/VLANs. Active Directory, TCP/IP Networks, IT Support, Network Support, Helpdesk, Team Leadership Location : Harrogate, North Yorkshire (Hybrid work - 2-3days in the office per week) Salary: £37,000 - £42,000 + Full Benefits Package Details: Well established Harrogate based company are immediately seeking an IT Support Team Leader to join their small IT Team to provide in-house thirdline technical support to their endusers; as well as team leadership. The role is very hands-on of which 80% of the role is predominately thirdline support of their IT infrastructure, networks, and cybersecurity; and the remainder is leading and supervising the small team, as well as involvement and leading your own projects. Technically, candidates must ideally possess good skills in Office365 administration, Active Directory, Windows 2016/2019 Server, network administration (LANs/WANs/VPNs/TCP/IP/Firewalls, cabling, patching etc), and basic cybersecurity skills ideally utilising Sophos and Sonicwall.There is no expectation that you possess all these skills, but a good complement of them would be appreciated. The skills that you do not possess can be an opportunity to learn these new technologies. This is a new role within the team, and will operate as the IT Manager's right-hand. As such, there is a degree of flexibility around the role remit which can be discussed at interview. Strong leadership/supervisory experience is essential as well as good general all round IT Skills. Due to the variety of issues that you may face daily, the ability to be adaptable, logical, and methodical in your approach are critical. Academically, you must possess ANY relevant IT/Computing/Computer Science qualification (BSc degree, diploma, certification - eg COMPTIA, Cisco, Microsoft, VMware etc). If you are up for a challenge, with a company that's going places, please APPLY NOW! This role is commutable from Harrogate, Leeds, Bradford, York, Knaresborough, Ripon, Wetherby, Otley, Skipton, Wakefield, North Yorkshire, West Yorkshire Potential candidates must be fully eligible to work in the UK without the need for visa sponsorship(either now or in the future) . IT Mob Limited are acting as an Agency in relation to this vacancy, and are an Equal Opportunities Employer.
10/05/2024
Full time
IT Support Team Leader- Harrogate, North Yorkshire Skills: Office365, Windows 2016/2019 Server, LANs/WANs/VPN/VLANs. Active Directory, TCP/IP Networks, IT Support, Network Support, Helpdesk, Team Leadership Location : Harrogate, North Yorkshire (Hybrid work - 2-3days in the office per week) Salary: £37,000 - £42,000 + Full Benefits Package Details: Well established Harrogate based company are immediately seeking an IT Support Team Leader to join their small IT Team to provide in-house thirdline technical support to their endusers; as well as team leadership. The role is very hands-on of which 80% of the role is predominately thirdline support of their IT infrastructure, networks, and cybersecurity; and the remainder is leading and supervising the small team, as well as involvement and leading your own projects. Technically, candidates must ideally possess good skills in Office365 administration, Active Directory, Windows 2016/2019 Server, network administration (LANs/WANs/VPNs/TCP/IP/Firewalls, cabling, patching etc), and basic cybersecurity skills ideally utilising Sophos and Sonicwall.There is no expectation that you possess all these skills, but a good complement of them would be appreciated. The skills that you do not possess can be an opportunity to learn these new technologies. This is a new role within the team, and will operate as the IT Manager's right-hand. As such, there is a degree of flexibility around the role remit which can be discussed at interview. Strong leadership/supervisory experience is essential as well as good general all round IT Skills. Due to the variety of issues that you may face daily, the ability to be adaptable, logical, and methodical in your approach are critical. Academically, you must possess ANY relevant IT/Computing/Computer Science qualification (BSc degree, diploma, certification - eg COMPTIA, Cisco, Microsoft, VMware etc). If you are up for a challenge, with a company that's going places, please APPLY NOW! This role is commutable from Harrogate, Leeds, Bradford, York, Knaresborough, Ripon, Wetherby, Otley, Skipton, Wakefield, North Yorkshire, West Yorkshire Potential candidates must be fully eligible to work in the UK without the need for visa sponsorship(either now or in the future) . IT Mob Limited are acting as an Agency in relation to this vacancy, and are an Equal Opportunities Employer.
Database Administrator (SQL/Oracle) Grangemouth (Onsite) £50,000 + benefits My client a global company with 36 businesses across 29 countries and 194 sites worldwide. Is looking for a SQL DBA to work on site at their Grangemouth office. We are looking for a talented Database System Administrator (DBA) for a permanent role in our applications support team. Reporting to the Applications Team Leader, you'll maintain our Oracle and MS SQL database estate for optimal performance, security, and integrity. Responsibilities include software patching, policy creation, and collaboration with stakeholders and 3rd party suppliers. Travel to Grangemouth is required, and you'll participate in the IT Apps team on-call rota. Key Accountabilities Technical support and development tasks Define business requirements in collaboration with stakeholders Support IT Strategy and drive service improvements Complete project activity tasks with the project manager Maintain a Cybersecurity standard compliant database estate Kry skills Oracle Database Administration skills (from 10g onwards) SQL Server Administration skills (SQLSERVER 2008 onwards) Proficiency in Oracle RMAN configuration and management Extensive knowledge of backup and recovery operations DBMS monitoring, troubleshooting, and optimization skills Experience in SQL, PL/SQL, and T-SQL development and tuning Familiarity with Middleware systems (IIS, WebSphere, Weblogic) Deployment and environment management experience Scripting and development skills Strong analytical and problem-solving abilities Understanding of the Software Development Life Cycle (SDLC) Experience in database design or data architecture principles Benefits include: 34 days of holiday, Benefits Platform (discounts on high street stores, etc.), Up to 20% Discretionary Bonus Opportunity, Contributory Pension (employer contributions), Free On-site Gym & Classes, Employee Assistance Programme, Enhanced maternity leave, Salary Sacrifice Car and Cycle to Work Scheme
09/05/2024
Full time
Database Administrator (SQL/Oracle) Grangemouth (Onsite) £50,000 + benefits My client a global company with 36 businesses across 29 countries and 194 sites worldwide. Is looking for a SQL DBA to work on site at their Grangemouth office. We are looking for a talented Database System Administrator (DBA) for a permanent role in our applications support team. Reporting to the Applications Team Leader, you'll maintain our Oracle and MS SQL database estate for optimal performance, security, and integrity. Responsibilities include software patching, policy creation, and collaboration with stakeholders and 3rd party suppliers. Travel to Grangemouth is required, and you'll participate in the IT Apps team on-call rota. Key Accountabilities Technical support and development tasks Define business requirements in collaboration with stakeholders Support IT Strategy and drive service improvements Complete project activity tasks with the project manager Maintain a Cybersecurity standard compliant database estate Kry skills Oracle Database Administration skills (from 10g onwards) SQL Server Administration skills (SQLSERVER 2008 onwards) Proficiency in Oracle RMAN configuration and management Extensive knowledge of backup and recovery operations DBMS monitoring, troubleshooting, and optimization skills Experience in SQL, PL/SQL, and T-SQL development and tuning Familiarity with Middleware systems (IIS, WebSphere, Weblogic) Deployment and environment management experience Scripting and development skills Strong analytical and problem-solving abilities Understanding of the Software Development Life Cycle (SDLC) Experience in database design or data architecture principles Benefits include: 34 days of holiday, Benefits Platform (discounts on high street stores, etc.), Up to 20% Discretionary Bonus Opportunity, Contributory Pension (employer contributions), Free On-site Gym & Classes, Employee Assistance Programme, Enhanced maternity leave, Salary Sacrifice Car and Cycle to Work Scheme