The Armament supervisor is responsible to the Armament lead and should be an experienced and skilled technician undertaking a range of detailed maintenance activities on aircraft equipment and/or aircraft components. The post holder should have an excellent understanding of the construct of the approved Technical Information set and is competent to supervise personnel who are working on maintenance instructions and in accordance with the organisation's Regulatory Framework and should be able to demonstrate a distinct ability to analyse and diagnose faults to equipment & assemblies, follow diagnostic procedures and work effectively within a team providing guidance to less experienced team members in a diverse and dynamic operational environment. Responsible for maintaining airworthiness through appropriate task delegation and authorisation on an aircraft or aircraft component. Responsible for meeting agreed delivery targets at a tactical level. Demonstrates people management and leadership skills Demonstrates awareness of broader external dependencies and identifies areas for continuous improvement. In addition the Post Holder shall hold certain privileges delegated from the Maintenance Manager. RequirementsCore Activities: Undertake detailed maintenance, inspection and supervision activities of aircraft components. Assuring work carried out has been completed in accordance with the SOW/Work package using the relevant approved technical information. Resolving faults and maintenance issues, including an awareness of configuration management. Undertake and complete tasked maintenance & diagnostic activities on weapons systems/components which will include, as appropriate, component removals, inspections, repairs, modifications, fault rectifications, replacements and/or functional/system test. Will be responsible for the operational output of each Component MRO Workshop under their control in line with agreed customer requirements. Post holder will also have responsibilities for the cost and schedule adherence of the component maintenance activities. Supervise team to ensure that maintenance is undertaken to schedule and highlight any issues, escalate as required. Report on any impact to the wider programme. Responsible for meeting agreed delivery targets in the short to medium term through the supervision of others. Progress reporting against delivery targets to management. Undertake support tasks within the component maintenance facility which are required to maintain compliance with the MOE and AMC procedures (eg oversight checks, control of tooling/test equipment etc.) Undertake fault evaluation and raise ad hoc work cards and for found faults' during maintenance. Ability to scope and carry out independent and vital inspections. Maintain personal & teams task authorisation for working on components in accordance with AMC requirements. Required to provide support and guidance, including allocation of tasks to appropriately authorised maintenance technicians. Provide effective leadership and supervision to team members under your direct supervision. Key Activities: Performance indicators - Ensure the effective management of Part 145 activities by setting delivery targets, monitoring progress and developing performance improvement programmes. Prioritises activities within/across teams to maximise efficiency. Represents the Maintenance Manager at management reviews, where necessary. Responsible for the assessment of escalated issues for any impact on Continuing Airworthiness and generating effective resolution, or sponsoring escalation to management, as appropriate. Completion of activities - Ensure all Part 145 activities are appropriately documented and airworthiness records are maintained on relevant systems (IT/paper based). Ensure all Part 145 activities are performed by suitably qualified, experienced and authorised personnel. Ensure the integration of Part 145 activity within the business, including the engagement of key stakeholders at all stages of the process. Provide support and guidance to the team(s). Procedure/standards - Manage the Part 145 team(s) compliance with the Part 145 Exposition, its associated procedures and standards, and any other Company procedures and standards, as applicable. Identify, propose and implement change as required, whilst ensuring compliance. Safety Management System - Promote the application of Human Factors, Error Management, Risk Management and Safety Assurance within the Part 145 team(s), together with the proactive analysis, mitigation and management of Hazards. Management System Assurance - Ensure Part 145 team(s) activities are compliant with the AM&S Governance and Assurance framework. Ensure Process Confirmations and independent assurance audits are supported by Part 145 personnel and integrated within/across teams. Manage the response to audit findings in a timely and appropriate manner and provide information into the relevant reviews. Generate and implement effective improvements within/across teams to overcome any non-compliance and monitor effectiveness. Statutory/Regulatory & Legislative requirements - Able to demonstrate a good understanding and application of the relevant Continuing Airworthiness Regulatory framework, and ensure any Regulatory-driven changes are implemented within the Part 145 team(s) activities. Ensure compliance with all other requirements, eg ITAR, EaPW, ISO, etc. Contractual Requirements - Ensure compliance with all applicable contractual requirements, eg through support to contract reviews, and ensure any changes are implemented into the Part 145 activities, as appropriate. Requirements: Completion of an Engineering Apprenticeship, ideally in Aeronautical Engineering or Military equivalent apprenticeship/qualifications. Academic qualification for this role is a minimum of City & Guilds 2675 or 2661 in Aeronautical Engineering and Maintenance or equivalent. Experienced and competent leader at this level. Typically 2+ years' experience including type, classed as fully competent with all required 'Authorities' in place. Demonstrating breadth of experience, currency & recency via a Log Book (electronic or paper) capturing skills, knowledge and authorities for working on Aircraft type or in bays. Practical experience and expertise in the application of aviation safety standards and safe operating practices. A comprehensive knowledge of the Acceptable Means of Compliance. Management training. Leadership- Foundation. Human Factors- Standard Course Specification. E&PW Awareness- Standard Course Specification. ITAR Awareness- Standard Course Specification. Benefits Competitive Basic Salary 25 Days Annual Leave Annual Bonus On site Parking Pension Scheme Life Assurance
16/05/2024
Full time
The Armament supervisor is responsible to the Armament lead and should be an experienced and skilled technician undertaking a range of detailed maintenance activities on aircraft equipment and/or aircraft components. The post holder should have an excellent understanding of the construct of the approved Technical Information set and is competent to supervise personnel who are working on maintenance instructions and in accordance with the organisation's Regulatory Framework and should be able to demonstrate a distinct ability to analyse and diagnose faults to equipment & assemblies, follow diagnostic procedures and work effectively within a team providing guidance to less experienced team members in a diverse and dynamic operational environment. Responsible for maintaining airworthiness through appropriate task delegation and authorisation on an aircraft or aircraft component. Responsible for meeting agreed delivery targets at a tactical level. Demonstrates people management and leadership skills Demonstrates awareness of broader external dependencies and identifies areas for continuous improvement. In addition the Post Holder shall hold certain privileges delegated from the Maintenance Manager. RequirementsCore Activities: Undertake detailed maintenance, inspection and supervision activities of aircraft components. Assuring work carried out has been completed in accordance with the SOW/Work package using the relevant approved technical information. Resolving faults and maintenance issues, including an awareness of configuration management. Undertake and complete tasked maintenance & diagnostic activities on weapons systems/components which will include, as appropriate, component removals, inspections, repairs, modifications, fault rectifications, replacements and/or functional/system test. Will be responsible for the operational output of each Component MRO Workshop under their control in line with agreed customer requirements. Post holder will also have responsibilities for the cost and schedule adherence of the component maintenance activities. Supervise team to ensure that maintenance is undertaken to schedule and highlight any issues, escalate as required. Report on any impact to the wider programme. Responsible for meeting agreed delivery targets in the short to medium term through the supervision of others. Progress reporting against delivery targets to management. Undertake support tasks within the component maintenance facility which are required to maintain compliance with the MOE and AMC procedures (eg oversight checks, control of tooling/test equipment etc.) Undertake fault evaluation and raise ad hoc work cards and for found faults' during maintenance. Ability to scope and carry out independent and vital inspections. Maintain personal & teams task authorisation for working on components in accordance with AMC requirements. Required to provide support and guidance, including allocation of tasks to appropriately authorised maintenance technicians. Provide effective leadership and supervision to team members under your direct supervision. Key Activities: Performance indicators - Ensure the effective management of Part 145 activities by setting delivery targets, monitoring progress and developing performance improvement programmes. Prioritises activities within/across teams to maximise efficiency. Represents the Maintenance Manager at management reviews, where necessary. Responsible for the assessment of escalated issues for any impact on Continuing Airworthiness and generating effective resolution, or sponsoring escalation to management, as appropriate. Completion of activities - Ensure all Part 145 activities are appropriately documented and airworthiness records are maintained on relevant systems (IT/paper based). Ensure all Part 145 activities are performed by suitably qualified, experienced and authorised personnel. Ensure the integration of Part 145 activity within the business, including the engagement of key stakeholders at all stages of the process. Provide support and guidance to the team(s). Procedure/standards - Manage the Part 145 team(s) compliance with the Part 145 Exposition, its associated procedures and standards, and any other Company procedures and standards, as applicable. Identify, propose and implement change as required, whilst ensuring compliance. Safety Management System - Promote the application of Human Factors, Error Management, Risk Management and Safety Assurance within the Part 145 team(s), together with the proactive analysis, mitigation and management of Hazards. Management System Assurance - Ensure Part 145 team(s) activities are compliant with the AM&S Governance and Assurance framework. Ensure Process Confirmations and independent assurance audits are supported by Part 145 personnel and integrated within/across teams. Manage the response to audit findings in a timely and appropriate manner and provide information into the relevant reviews. Generate and implement effective improvements within/across teams to overcome any non-compliance and monitor effectiveness. Statutory/Regulatory & Legislative requirements - Able to demonstrate a good understanding and application of the relevant Continuing Airworthiness Regulatory framework, and ensure any Regulatory-driven changes are implemented within the Part 145 team(s) activities. Ensure compliance with all other requirements, eg ITAR, EaPW, ISO, etc. Contractual Requirements - Ensure compliance with all applicable contractual requirements, eg through support to contract reviews, and ensure any changes are implemented into the Part 145 activities, as appropriate. Requirements: Completion of an Engineering Apprenticeship, ideally in Aeronautical Engineering or Military equivalent apprenticeship/qualifications. Academic qualification for this role is a minimum of City & Guilds 2675 or 2661 in Aeronautical Engineering and Maintenance or equivalent. Experienced and competent leader at this level. Typically 2+ years' experience including type, classed as fully competent with all required 'Authorities' in place. Demonstrating breadth of experience, currency & recency via a Log Book (electronic or paper) capturing skills, knowledge and authorities for working on Aircraft type or in bays. Practical experience and expertise in the application of aviation safety standards and safe operating practices. A comprehensive knowledge of the Acceptable Means of Compliance. Management training. Leadership- Foundation. Human Factors- Standard Course Specification. E&PW Awareness- Standard Course Specification. ITAR Awareness- Standard Course Specification. Benefits Competitive Basic Salary 25 Days Annual Leave Annual Bonus On site Parking Pension Scheme Life Assurance
Position: B1/2 Licenced Engineer Location: East Midlands Working Hours: 5-5-4 Shift Pattern Competitive Salary + Excellent Benefits! Great Work-Life Balance with a 5-5-4 Shift Pattern! Type Rating Training included for the right individuals! Opportunities for professional development! For more details, read on! Actively seeking talented Licenced Engineers to join our talent Engineering Team on an exciting project based in East Midlands. This opportunity is to support a high-profile customer through a dedicated workforce understanding the need to deliver impeccable service in an active operational environment. To be considered for this position you will hold, a UK CAA Part 66 B1, B2 or B3 Licence with no limitations on airframe or engine that would otherwise restrict the addition of Group 3 type rating for: Vulcanair P68R Victor' Preferred candidates will already hold the Group 3 type rating, however applicants with other similar type ratings will be considered as training and type courses may be provided. Mission system operating and maintenance experience also desirable. The successful candidate will join a long established and respected forward-thinking company that has a proven pedigree in career development within the organisation. As part of this role, you must be prepared to work flexibly as part of a team and as an integral part of the Gama Engineering Group, possessing strong communication, organisation and leadership skills. / About us: A hugely diverse business that offers much more than perhaps its name would suggest. Yes, we fly but we also save lives, provide mission critical intelligence, and build systems that deliver decisive advantage. With operations in the UK, US, Middle East and Hong Kong a career with us can offer travel, personal growth opportunities and the ability for long-term progression in a fast paced and dynamic service industry. / Responsibilities: Responsible for the successful completion of all allocated, planned and ad-hoc maintenance tasks Ensure the completion of scheduled customer order requirements when acting as supervising, certifying or category C engineer for a given input Responsible for the management of and performance/quality of performed works in compliance with applicable company process and procedures Ensure correct compliance with applicable regulatory requirements Maintain the required engineering licence and applicable type rating as required to perform duties and be responsible for ensuring licences and type ratings do not lapse and are kept up to date Accountable for providing professional communication with customers and contacts as required Individual responsibility for booking accurate, and consistent timekeeping in applicable software system / Skills, Qualifications and Experience required: Essential An Unrestricted UK CAA Part 66 Licence Category B1, B2 and/or B3 Previous aircraft base maintenance experience with a wide knowledge and skill range in servicing, inspection repair and modifications Satisfactory recency as required for issue of applicable certifying approval Full UK Driving Licence Advantageous Hold the Group 3 type rating for Vulcanair P68R / In addition to a Competitive Salary, we will offer you: Great work life balance with a 5-5-4 shift pattern Competitive Group Pension Scheme Life Assurance. Income Protection. Travel Insurance. Private Healthcare (after successful passing of probation). Free Car Parking 2 Paid Volunteering Days each calendar year (subject to line manager approval) .(Subject to insurance underwriting) Due to the volume of applications received, only candidates selected for interview will be contacted. If you do not hear from us within 20 working days then your application has been unsuccessful on this occasion.
16/05/2024
Full time
Position: B1/2 Licenced Engineer Location: East Midlands Working Hours: 5-5-4 Shift Pattern Competitive Salary + Excellent Benefits! Great Work-Life Balance with a 5-5-4 Shift Pattern! Type Rating Training included for the right individuals! Opportunities for professional development! For more details, read on! Actively seeking talented Licenced Engineers to join our talent Engineering Team on an exciting project based in East Midlands. This opportunity is to support a high-profile customer through a dedicated workforce understanding the need to deliver impeccable service in an active operational environment. To be considered for this position you will hold, a UK CAA Part 66 B1, B2 or B3 Licence with no limitations on airframe or engine that would otherwise restrict the addition of Group 3 type rating for: Vulcanair P68R Victor' Preferred candidates will already hold the Group 3 type rating, however applicants with other similar type ratings will be considered as training and type courses may be provided. Mission system operating and maintenance experience also desirable. The successful candidate will join a long established and respected forward-thinking company that has a proven pedigree in career development within the organisation. As part of this role, you must be prepared to work flexibly as part of a team and as an integral part of the Gama Engineering Group, possessing strong communication, organisation and leadership skills. / About us: A hugely diverse business that offers much more than perhaps its name would suggest. Yes, we fly but we also save lives, provide mission critical intelligence, and build systems that deliver decisive advantage. With operations in the UK, US, Middle East and Hong Kong a career with us can offer travel, personal growth opportunities and the ability for long-term progression in a fast paced and dynamic service industry. / Responsibilities: Responsible for the successful completion of all allocated, planned and ad-hoc maintenance tasks Ensure the completion of scheduled customer order requirements when acting as supervising, certifying or category C engineer for a given input Responsible for the management of and performance/quality of performed works in compliance with applicable company process and procedures Ensure correct compliance with applicable regulatory requirements Maintain the required engineering licence and applicable type rating as required to perform duties and be responsible for ensuring licences and type ratings do not lapse and are kept up to date Accountable for providing professional communication with customers and contacts as required Individual responsibility for booking accurate, and consistent timekeeping in applicable software system / Skills, Qualifications and Experience required: Essential An Unrestricted UK CAA Part 66 Licence Category B1, B2 and/or B3 Previous aircraft base maintenance experience with a wide knowledge and skill range in servicing, inspection repair and modifications Satisfactory recency as required for issue of applicable certifying approval Full UK Driving Licence Advantageous Hold the Group 3 type rating for Vulcanair P68R / In addition to a Competitive Salary, we will offer you: Great work life balance with a 5-5-4 shift pattern Competitive Group Pension Scheme Life Assurance. Income Protection. Travel Insurance. Private Healthcare (after successful passing of probation). Free Car Parking 2 Paid Volunteering Days each calendar year (subject to line manager approval) .(Subject to insurance underwriting) Due to the volume of applications received, only candidates selected for interview will be contacted. If you do not hear from us within 20 working days then your application has been unsuccessful on this occasion.
There's never been a more exciting time to be part of the nuclear sector. New opportunities are being created all the time. At our Client, you'll be in the ideal place to capitalise on this momentum, face new challenges and develop a long, successful and meaningful career. Our Client is an organisation that's here to experiment and push the limits of what's possible. So, if you're keen to excel in your chosen field, this is the place to do it. The Safety Case Manager (SCM) is a facility-specific, nuclear baseline role to support the Safety Case Delivery Lead to ensure the company's continued compliance with all safety case-related Site Licence Conditions (principally LC14, 15, 23, 27). The SCM is responsible for the development, implementation, maintenance and review of the safety case as well as managing integration of emergent project pipeline demands. The role is required to ensure that the safety case is delivered in a clear and user-friendly way all stakeholders. The SCM is a lead role and must be able to perform duties with minimal management direction. RESPONSIBILITIES Main responsibilities: Lead implementation of governance arrangements to ensure appropriate legislative, regulatory, environmental, safety and quality requirements are complied with across their area of responsibility. Develop, implement and maintain a clear strategy for the ongoing management of the safety case in line with the relevant process arrangements. Act as the customer (on behalf of the SCO) regarding safety case requirements. They shall be the primary point of contact for facility safety case issues. Sponsor documentation through the safety committee (PMP, MSC). Ensure the safety case is clear, fit for purpose, pragmatic and user friendly. Provide high quality safety case advice to all stakeholders. Identify and drive improvement initiatives on safety case understanding and implementation in the workplace. Look for, use and share learning from internal and external sources and from events and good practice. Drive the training and development of safety case team members in line with the safety case workbook, career Pathway and business requirements. Maintain up to date detailed knowledge of relevant legislative, regulatory and company policy, standards and procedures. Maintain a working knowledge of applicable regulations, processes and industry good practice, through attendance at relevant forums within the wider safety case community and benchmarking with other organisations. They shall be responsible for managing implementation of these back in the workplace. EXPERIENCE ESSENTIAL Experienced in working in a regulated industry, detail orientated, and able to work to stringent deadlines. Compliance professional, educated to Degree level (or equivalent), with extensive demonstrable practical & relevant experience in a safety case management role. Must demonstrate an ability to analyse and interpret complex information from several, sometimes conflicting or novel sources, with a proven problem-solving ability in order to make decisions based upon this information. Highly motivated with the ability to communicate concepts to diverse audiences with varying skills. Experience of remaining calm under stressful circumstances. Evidence of self-motivation with demonstrable levels of drive, energy and resilience. Ability to communicate key information both verbal and written with a range of stakeholders. Ability to influence, communicate and work collaboratively with a range of stakeholders across a team and business area. Good analytical thinking skills, with experience of solving novel and possibly challenging technical issues. Good understanding of ALARP principles. Good planning skills. Computer literate with MS Office suite. Ability to obtain DV level security clearance (this includes but is not limited to identity, employment, financial, criminal record checks, interview plus 10 years of UK residency). DESIRABLE Fully conversant with SLP 2.17 suite. SCM workbook completed. A thorough awareness of nuclear and conventional safety and security requirements applicable to their area(s) of responsibility.
16/05/2024
Full time
There's never been a more exciting time to be part of the nuclear sector. New opportunities are being created all the time. At our Client, you'll be in the ideal place to capitalise on this momentum, face new challenges and develop a long, successful and meaningful career. Our Client is an organisation that's here to experiment and push the limits of what's possible. So, if you're keen to excel in your chosen field, this is the place to do it. The Safety Case Manager (SCM) is a facility-specific, nuclear baseline role to support the Safety Case Delivery Lead to ensure the company's continued compliance with all safety case-related Site Licence Conditions (principally LC14, 15, 23, 27). The SCM is responsible for the development, implementation, maintenance and review of the safety case as well as managing integration of emergent project pipeline demands. The role is required to ensure that the safety case is delivered in a clear and user-friendly way all stakeholders. The SCM is a lead role and must be able to perform duties with minimal management direction. RESPONSIBILITIES Main responsibilities: Lead implementation of governance arrangements to ensure appropriate legislative, regulatory, environmental, safety and quality requirements are complied with across their area of responsibility. Develop, implement and maintain a clear strategy for the ongoing management of the safety case in line with the relevant process arrangements. Act as the customer (on behalf of the SCO) regarding safety case requirements. They shall be the primary point of contact for facility safety case issues. Sponsor documentation through the safety committee (PMP, MSC). Ensure the safety case is clear, fit for purpose, pragmatic and user friendly. Provide high quality safety case advice to all stakeholders. Identify and drive improvement initiatives on safety case understanding and implementation in the workplace. Look for, use and share learning from internal and external sources and from events and good practice. Drive the training and development of safety case team members in line with the safety case workbook, career Pathway and business requirements. Maintain up to date detailed knowledge of relevant legislative, regulatory and company policy, standards and procedures. Maintain a working knowledge of applicable regulations, processes and industry good practice, through attendance at relevant forums within the wider safety case community and benchmarking with other organisations. They shall be responsible for managing implementation of these back in the workplace. EXPERIENCE ESSENTIAL Experienced in working in a regulated industry, detail orientated, and able to work to stringent deadlines. Compliance professional, educated to Degree level (or equivalent), with extensive demonstrable practical & relevant experience in a safety case management role. Must demonstrate an ability to analyse and interpret complex information from several, sometimes conflicting or novel sources, with a proven problem-solving ability in order to make decisions based upon this information. Highly motivated with the ability to communicate concepts to diverse audiences with varying skills. Experience of remaining calm under stressful circumstances. Evidence of self-motivation with demonstrable levels of drive, energy and resilience. Ability to communicate key information both verbal and written with a range of stakeholders. Ability to influence, communicate and work collaboratively with a range of stakeholders across a team and business area. Good analytical thinking skills, with experience of solving novel and possibly challenging technical issues. Good understanding of ALARP principles. Good planning skills. Computer literate with MS Office suite. Ability to obtain DV level security clearance (this includes but is not limited to identity, employment, financial, criminal record checks, interview plus 10 years of UK residency). DESIRABLE Fully conversant with SLP 2.17 suite. SCM workbook completed. A thorough awareness of nuclear and conventional safety and security requirements applicable to their area(s) of responsibility.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
16/05/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.