Overview
Information Risk/Security Consultant Jobs in Dallas, TX at Ashley Ellis, Inc
Title: Information Risk/Security Consultant
Company: Ashley Ellis, Inc
Location: Dallas, TX
Job Title:Information Risk/Security Consultant
Work Location:Remote
Duration:Long-term contract with option to hire
Job Description:We are seeking anInformation Technology Governance Risk / Security Controls Consultantto join our Information Technology Team.This is a unique opportunity to join a dynamic team who is looking to streamline and automate manual processes, build / develop and implement solutions that will allow us to work smarter, not harder and add value to the business while reducing our IT risk profile, within a dynamic, fast growing organization.
This role will report into the Director of IT Governance and will work along with the other team members to provide support with all Information Technology and Security related processes, procedures, related to IT Governance, Risk and Controls activities. Responsible for ensuring that Organizational IT Policies, Standards and Control Objectives are being met, and Industry best practices, standards, and mandatory legislation and regulations are utilized and considered when developing / updating and implementing processes and procedures within the Information Technology department, and ensure conformance with the Information Technology Risk Management and Governance Framework, in place as defined by the client’s Second line of Defense, and also interact and work with Information Technology Process Owners, Business, within the First line of Defense, Second Line of Defense and Third line of Defense (Audit), as well as other functions such as Risk, Compliance, Legal, Third-Party Risk Management, Enterprise Information Security, taking into consideration the current maturity of IT as well as evolving needs of all stakeholders.
Work closely with the Director of IT Governance, IT Management, Business Management and other MFS personnel to effectively communicate the IT Governance, Risk and Control practices, help establish an understanding and awareness of the IT Governance, Risk and Control Management and Oversight within MFS USA. Perform Risk Control Self Assessments (RCSA), IT Risk and Control Assessments such as Secure Coding practice reviews, Vulnerability Assessments, PenTesting, etc.,. Ability to assess issues and propose viable solutions, develop remediation action plans, and manage projects and initiatives to successful completion.
Ability to automate and provide technological solutions to improve manual processes as well as manage the coordination and implementation of the solutions, information and associated technologies Ensure that the respective accountable IT functional heads are contributing to the success of the initiative, providing input into the IT Service Levels, Risk and Performance management reporting.
KEY AREAS OF RESPONSIBILITY1. Information Technology Risk Management
2. Information / Cyber Security Assessments – security vulnerability evaluations assessments
3. IT Risk / Security and Control Assessments and Remediation
4. IT Governance and Oversight – Risk and Performance Metrics Reporting
5. IT Audit and Risk Coordination
6. IT and Governance Documentation – Develop, Document, Maintain, Implement, Communicate, – Policies, Standards, Processes, Process Flows and Procedures
Responsibilities:
Perform Risk Controls Self Assessments (RCSAs), other Controls, Risk, Vulnerability and Maturity assessments (FFIEC, FFIEC CAT, NIST, etc)
Coordinate, conduct and lead meetings with stakeholders to obtain an understanding of their processes, procedures, …
