*Remote But not allowed in the following States: Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico.* A prestigious company is looking for a Cyber Risk Manager - SOAR, SIEM, Cyber Defense. This manager will focus on predicting, detecting, and responding to cyber incident response and threats. This role will manage over 4 senior people and a vendor who manages 40 outsourced SOC individuals. Responsibilities Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors that are targeting the company. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Develop strong working relationships with other leaders in the information technology organization by providing continuous assistance and thought leadership. Establish and maintain relationships with suppliers and business partners in the information security industry. Qualifications 8+ years of professional experience in Cybersecurity with a Bachelor's degree in Computer Science or a related field; 1+ years of supervisory/management experience. Ability to research and maintain current technical knowledge to support rapidly changing technology. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, and technical project proposals. Knowledge in preparing and managing budgets. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects.
27/09/2024
Full time
*Remote But not allowed in the following States: Alaska, North Dakota, Nebraska, Hawaii, Oklahoma, Vermont, Maine, West Virginia, Wyoming, New Hampshire, Puerto Rico.* A prestigious company is looking for a Cyber Risk Manager - SOAR, SIEM, Cyber Defense. This manager will focus on predicting, detecting, and responding to cyber incident response and threats. This role will manage over 4 senior people and a vendor who manages 40 outsourced SOC individuals. Responsibilities Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors that are targeting the company. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Develop strong working relationships with other leaders in the information technology organization by providing continuous assistance and thought leadership. Establish and maintain relationships with suppliers and business partners in the information security industry. Qualifications 8+ years of professional experience in Cybersecurity with a Bachelor's degree in Computer Science or a related field; 1+ years of supervisory/management experience. Ability to research and maintain current technical knowledge to support rapidly changing technology. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, and technical project proposals. Knowledge in preparing and managing budgets. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects.
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Manager of Cyber Security Event and Incident Response. Candidate will lead the team responsible for predicting, detecting, and responding to cyber risk events corresponding to security and appropriate use threats. The primary objectives for the role will be to sustain a high degree of operational maturity in executing risk event management processes, to establish and maintain cross-functional relationships that enable end-to-end enterprise incident response, and to drive the adoption of innovative practices that proactively improve our ability to prevent, detect, disrupt, investigate, respond to, and recover from sophisticated threats. Responsibilities Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Develop strong working relationships with other leaders in the information technology organization by providing continuous assistance and thought leadership. Establish and maintain relationships with suppliers and business partners in the information security industry. Educate, coach, and mentor a team on technical, interpersonal, and team dynamics, company policy & procedures, and other topics. Take an active role in fostering a culture of learning and excellence. This list is not all-inclusive, and you are expected to perform other duties as requested or assigned. Qualifications 8+ years of professional experience in Cybersecurity with a Bachelor's degree in Computer Science or a related field; 1+ years of supervisory/management experience. Strong communication skills with a high priority on listening to others. Ability to practice empathy and build trust amongst the team. Ability to research and maintain current technical knowledge to support rapidly changing technology. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, and technical project proposals. Knowledge in preparing and managing budgets. Ability to analyze business requirements and recommend the right solutions in a timely fashion. Demonstrated use of ingenuity and creativity by taking actions to direct the analyses and solutions of problems. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects. Ability to recruit, retain and develop a team.
27/09/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Manager of Cyber Security Event and Incident Response. Candidate will lead the team responsible for predicting, detecting, and responding to cyber risk events corresponding to security and appropriate use threats. The primary objectives for the role will be to sustain a high degree of operational maturity in executing risk event management processes, to establish and maintain cross-functional relationships that enable end-to-end enterprise incident response, and to drive the adoption of innovative practices that proactively improve our ability to prevent, detect, disrupt, investigate, respond to, and recover from sophisticated threats. Responsibilities Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Develop strong working relationships with other leaders in the information technology organization by providing continuous assistance and thought leadership. Establish and maintain relationships with suppliers and business partners in the information security industry. Educate, coach, and mentor a team on technical, interpersonal, and team dynamics, company policy & procedures, and other topics. Take an active role in fostering a culture of learning and excellence. This list is not all-inclusive, and you are expected to perform other duties as requested or assigned. Qualifications 8+ years of professional experience in Cybersecurity with a Bachelor's degree in Computer Science or a related field; 1+ years of supervisory/management experience. Strong communication skills with a high priority on listening to others. Ability to practice empathy and build trust amongst the team. Ability to research and maintain current technical knowledge to support rapidly changing technology. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, and technical project proposals. Knowledge in preparing and managing budgets. Ability to analyze business requirements and recommend the right solutions in a timely fashion. Demonstrated use of ingenuity and creativity by taking actions to direct the analyses and solutions of problems. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects. Ability to recruit, retain and develop a team.
Manager, Cyber Risk Management Salary: Open + Bonus Location: Remote *We are unable to provide sponsorship for this role* Responsibilities Lead the team responsible for predicting, detecting, and responding to cyber risk events corresponding to security and appropriate use threats. Sustain a high degree of operational maturity in executing risk event management processes, to establish and maintain cross-functional relationships that enable end-to-end enterprise incident response, and to drive the adoption of innovative practices that proactively improve our ability to prevent, detect, disrupt, investigate, respond to, and recover from sophisticated threats. Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Educate, coach, and mentor a team on technical, interpersonal, and team dynamics, company policy & procedures, and other topics. Qualifications 8+ years of professional experience in Cybersecurity Bachelor's degree in Computer Science or a related field 1+ years of management experience Strong communication skills with a high priority on listening to others. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, technical project proposals, and managing budgets. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects. Ability to recruit, retain and develop a team.
27/09/2024
Full time
Manager, Cyber Risk Management Salary: Open + Bonus Location: Remote *We are unable to provide sponsorship for this role* Responsibilities Lead the team responsible for predicting, detecting, and responding to cyber risk events corresponding to security and appropriate use threats. Sustain a high degree of operational maturity in executing risk event management processes, to establish and maintain cross-functional relationships that enable end-to-end enterprise incident response, and to drive the adoption of innovative practices that proactively improve our ability to prevent, detect, disrupt, investigate, respond to, and recover from sophisticated threats. Collaborate on the evolution of a best-in-class security threat management program, incorporating cutting edge techniques in automation, machine learning, and distributed threat protection to broaden, deepen, and sharpen our capabilities to rapidly identify and eradicate cyber security threats. Work with cross-functional stakeholders from legal, corporate communications, privacy, compliance, facilities, and business continuity planning to mature enterprise end-to-end incident response and recovery plans and develop targeted playbooks to address emergent threats to the business. Sustain an agile, threat intelligence-driven continuous improvement process that leverages micro-purple testing techniques, hypothesis-based threat hunting, and the MITRE ATT&CK framework to identify missing or ineffective telemetry, detection capabilities, and response playbooks required to detect, prevent, and respond to cyber risk events originating from threat actors. Define the strategy for cyber threat management services, including the maintenance of the roadmap of process architectures that document the target and working states of cyber risk event management services and a multi-year plan to close gaps against the target state while keeping current with changes to technology and threat landscapes. Educate, coach, and mentor a team on technical, interpersonal, and team dynamics, company policy & procedures, and other topics. Qualifications 8+ years of professional experience in Cybersecurity Bachelor's degree in Computer Science or a related field 1+ years of management experience Strong communication skills with a high priority on listening to others. Highly knowledgeable in preparing business plans, IT plans, Technology Roadmaps, technical project proposals, and managing budgets. Knowledge of project development life cycle, including the ability to coordinate and prioritize multiple projects. Ability to recruit, retain and develop a team.
Kirtana consulting is looking for Tableau Server Admin role for 6months rolling contract in London. Job description: Role Title: Tableau Server Admin Required Core Skills: -Tableau Server -Qlik Sense Admin Support - DevOps automation skills (hands on experience in automating installation, upgrades and other DevOps related work) Minimum years of experience: Total 6-8 years Relevant 5+ years Areas of responsibility: Detailed Job Description: - Business Intelligence tool: Administrator in Tableau Server, Qlik Sense, and Qlik View, Qlik N-Printing. (Power BI) - Languages: PowerShell, Python - Cloud Application: Amazon Web Services (AWS) - S3 Bucket, Systems Manager, CloudWatch, and EC2. (If going to work along with Choi BJ) - Repository - GIT - Mavan
27/09/2024
Project-based
Kirtana consulting is looking for Tableau Server Admin role for 6months rolling contract in London. Job description: Role Title: Tableau Server Admin Required Core Skills: -Tableau Server -Qlik Sense Admin Support - DevOps automation skills (hands on experience in automating installation, upgrades and other DevOps related work) Minimum years of experience: Total 6-8 years Relevant 5+ years Areas of responsibility: Detailed Job Description: - Business Intelligence tool: Administrator in Tableau Server, Qlik Sense, and Qlik View, Qlik N-Printing. (Power BI) - Languages: PowerShell, Python - Cloud Application: Amazon Web Services (AWS) - S3 Bucket, Systems Manager, CloudWatch, and EC2. (If going to work along with Choi BJ) - Repository - GIT - Mavan
Information Technology Governance and Privacy - Financial Industry SALARY: $115k - $145k plus 15% bonus LOCATION: Chicago, IL Hybrid 3 days onsite and 2 days remote, They want 7 years of applicable experience The Associate Principal, Information Governance and Privacy (reporting to the Privacy and Data Protection Officer) is responsible for supporting the development and implementation of information governance, data protection, and privacy program. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organizations Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Understanding of and interest in technology selection and implementation Experience in Information Security related policy, procedure and control writing Technical Skills: Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Education and/or Experience: Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience 7 or more years of applicable work experience Previous work with information or data governance control activities in the financial services industry. Experience in the financial services industry Certificates or Licenses: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
26/09/2024
Full time
Information Technology Governance and Privacy - Financial Industry SALARY: $115k - $145k plus 15% bonus LOCATION: Chicago, IL Hybrid 3 days onsite and 2 days remote, They want 7 years of applicable experience The Associate Principal, Information Governance and Privacy (reporting to the Privacy and Data Protection Officer) is responsible for supporting the development and implementation of information governance, data protection, and privacy program. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organizations Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Understanding of and interest in technology selection and implementation Experience in Information Security related policy, procedure and control writing Technical Skills: Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Education and/or Experience: Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience 7 or more years of applicable work experience Previous work with information or data governance control activities in the financial services industry. Experience in the financial services industry Certificates or Licenses: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
InfraView - Specialist Cloud & IT Infrastructure Technology Recruitmen
Head of Engineering - £80,000 - £95,000 - UK remote based - Benefits Complete autonomy over CX & Call Recording function Experience in building, shaping and developing a team of engineers Via CX Lead and run a team of 13 engineers (looking to grow) Want to be the face of the engineering team of a multimillion £ organisation The client I am currently working with have been a trusted leader within the digital transformation and regulatory compliance landscape. They are experts in innovative solutions, spanning system & process design, project management, and service delivery which will drive growth and elevate Customer Experience (CX) You will be responsible for technically leading and developing a team of Engineers across the Call Centre and Call Recording team. Consistently looking to build and grow the engineering team to exceed targets and expectations with existing and new clients. This type of person needs to lead from the front by upskilling the team always being collaborative and bringing the engineering teams together. Key Skills: Be a leader which is liked and respected Have the ability to build a happy and successful team Confident and decisive whilst making key decisions Able to hold your own technically within CX and Call Recording Understanding the technical concepts of CX and Call Recording to map the skills across the teams. Proven expert within the digital area - Artificial Intelligence (AI) Responsibilities: Complete ownership and autonomy over CX and Call Recording function Lead, build, drive and up skill team and team members Strive to be CX and Call Recording function Drive key deliverables across business function and deliver excellence Delegate where possible, empowering people with responsibility to aid their personal growth Always looking to grow and develop the team. Strong mentality, leading from the front and showing professionalism. Report directly into board Developing skills and being a player manager, driving the (CX) division forward This is an amazing role in an exciting business and an opportunity for the successful person to run things how they see fit with full backing of board. Head of Engineering - £80,000 - £95,000 - UK remote based - Benefits Please hit the button to Apply and/email (see below) or call for further info.
26/09/2024
Full time
Head of Engineering - £80,000 - £95,000 - UK remote based - Benefits Complete autonomy over CX & Call Recording function Experience in building, shaping and developing a team of engineers Via CX Lead and run a team of 13 engineers (looking to grow) Want to be the face of the engineering team of a multimillion £ organisation The client I am currently working with have been a trusted leader within the digital transformation and regulatory compliance landscape. They are experts in innovative solutions, spanning system & process design, project management, and service delivery which will drive growth and elevate Customer Experience (CX) You will be responsible for technically leading and developing a team of Engineers across the Call Centre and Call Recording team. Consistently looking to build and grow the engineering team to exceed targets and expectations with existing and new clients. This type of person needs to lead from the front by upskilling the team always being collaborative and bringing the engineering teams together. Key Skills: Be a leader which is liked and respected Have the ability to build a happy and successful team Confident and decisive whilst making key decisions Able to hold your own technically within CX and Call Recording Understanding the technical concepts of CX and Call Recording to map the skills across the teams. Proven expert within the digital area - Artificial Intelligence (AI) Responsibilities: Complete ownership and autonomy over CX and Call Recording function Lead, build, drive and up skill team and team members Strive to be CX and Call Recording function Drive key deliverables across business function and deliver excellence Delegate where possible, empowering people with responsibility to aid their personal growth Always looking to grow and develop the team. Strong mentality, leading from the front and showing professionalism. Report directly into board Developing skills and being a player manager, driving the (CX) division forward This is an amazing role in an exciting business and an opportunity for the successful person to run things how they see fit with full backing of board. Head of Engineering - £80,000 - £95,000 - UK remote based - Benefits Please hit the button to Apply and/email (see below) or call for further info.
Request Technology - Craig Johnson
Chicago, Illinois
*Position is bonus eligible* Prestigious Financial Company is currently seeking a Principal Information Governance Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
23/09/2024
Full time
*Position is bonus eligible* Prestigious Financial Company is currently seeking a Principal Information Governance Analyst. Candidate will be responsible for supporting the development and implementation of the information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements Support and develop training and awareness programs for information governance, data protection, and privacy. Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program. Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Experience working in a highly regulated environment including an understanding of audit and compliance requirements Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience Experience in the financial services industry Certifications Preferred: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
NO SPONSORSHIP Information Governance - Data Privacy/Cyber Security They're seeing people that are more technical and they want more cyber security This is what it is: it is a data governance role out of highly regulated environments, financial is a huge plus, more governance policies procedures, records management systems, built a data privacy system, any Collabra or tableau, data leakage, records management, etc. They want 7 years of applicable experience The Associate Principal, Information Governance and Privacy (reporting to the Privacy and Data Protection Officer) is responsible for supporting the development and implementation of information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements for external organizations with whom OCC has a business need to share information; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Primary Duties and Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Technical Skills: Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Education and/or Experience: Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience 7 or more years of applicable work experience Previous work with information or data governance control activities in the financial services industry. Experience in the financial services industry Certificates or Licenses: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)
23/09/2024
Full time
NO SPONSORSHIP Information Governance - Data Privacy/Cyber Security They're seeing people that are more technical and they want more cyber security This is what it is: it is a data governance role out of highly regulated environments, financial is a huge plus, more governance policies procedures, records management systems, built a data privacy system, any Collabra or tableau, data leakage, records management, etc. They want 7 years of applicable experience The Associate Principal, Information Governance and Privacy (reporting to the Privacy and Data Protection Officer) is responsible for supporting the development and implementation of information governance, data protection, and privacy program. This includes supporting the development of strategies, policies, procedures, and controls related to the governance and protection of information throughout its life cycle. In addition, the role will work with stakeholders to define the information governance, data protection, and privacy requirements for external organizations with whom OCC has a business need to share information; will facilitate compliance with the identified requirements to control risk; will represent the program to internal and external stakeholders; and will support the development and implementation of training and awareness programs. This role will focus on compliance with applicable regulatory and legal rules and requirements (ie SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information including support of regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Primary Duties and Responsibilities: Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids Identification, implementation, and use of technologies to support program objectives and classification standards Execution of controls and risk assessments (eg, third-party risk, privacy, data protection) Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident. Creation and execution of strategies to identify information across the organization and throughout its life cycle Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems Qualifications: Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships Strong experience in building the capabilities for auto data classification, data security and data protection. Experience with classification standard definitions and settings Experience with Privacy requirements and work with personal information and its protection Strong strategic thinking, problem solving, and analytic skills Utilize metrics as means to improve performance Ability to adapt to change in emerging environments and work across multiple areas Experience in developing policies and procedures Experience in project management, project execution, and managing multiple priorities in a timeline driven environment Technical Skills: Office 365 (Word, Excel, PowerPoint) Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc. Project/Program Management Business Intelligence tool experience Education and/or Experience: Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience 7 or more years of applicable work experience Previous work with information or data governance control activities in the financial services industry. Experience in the financial services industry Certificates or Licenses: Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), and/or Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA)