Job Description
Work-Experience:
Total 8-10 years in an IT Technical role with at least 7 years’ experience in Information Security and exposure to regulatory audits and testing.
Type of Experience:
- Possesses strong knowledge of IT security technologies, operating systems, databases, and network infrastructure.
- Experienced in implementing, managing, and auditing security and compliance regulations (NERC CIP, SOX, PCI DSS, GDPR, HIPAA, GLBA), standards (ISO 27001, BS 17799), and frameworks (ITIL, NIST, COBIT).
- Hands-on experience with GRC tools for building and supporting Governance, Risk, and Compliance solutions.
- Proficient in risk management, compliance assurance, and audit processes.
- Coordinate Information Security initiatives to support NERC CIP, SOX, or regulatory compliance activities.
- Demonstrated success in delivering risk and compliance management services within a client-based delivery environment
Certifications
- CISSP / CISA / CISM / ISO 27001 is a must, along with other technical certifications like CCNA, CCNP, CCSA, etc.
