Information Systems Security Compliance Manager 4

4 weeks ago

india Novalink Solutions LLC Full time
Job Description

Position Description

Information Technology (IT) Professionals analyze, develop, implement, maintain, and modify computer operations, systems, networks, databases, applications, and/or information security. Incumbents may perform duties in one or more IT specialization areas depending on the needs of the agency. Incumbents perform supervisory duties and manage projects of varying size, scope, and impact to agency operations to include serving as the project leader; planning, organizing, and directing project activities; resolving design conflicts; data administration; resource allocation; contract negotiation; timeline development; critical path tracking; justifying the need for additional resources; and coordination with other work units within and outside the organization as assigned.

 

Primary responsibilities will be performing the duties of an Information Security Officer. Security functions include but are not limited to:

 

  • Conduct comprehensive assessments of the management in accordance with NIST Risk Management Framework (RFM), operational, and technical security controls employed within or inherited by a system to determine the overall effectiveness of the security controls using NIST 800-53 and Center for Internet Security (CIS) Controls for DMV ON-PREM and Cloud environments including AWS, Salesforce, and Mulesoft CSPs.
  • Generate and maintain required IS security documentation including Systems Security Plans (SSP), Information Assurance Standard Operating Procedures (IA SOP), Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices, and procedures.
  • The position will perform security audits and support external agency audits to ensure compliance with state and federal rules in the following areas:  investigations, security awareness training administration, security access control recommendations, badge access administration, risk assessments, approval authorization, anomalous activity detection alert notifications and incident response, and evaluation of software and hardware recommendations with related cost estimates.

 

 

  • Maintain day-to-day security posture and continuous monitoring of DMV networks and systems utilizing tools such as Tenable, Symantec, Alteris, Anomali, and Solarwinds in accordance with security policies and procedures.
  • Schedule, perform and maintain records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements.
  • Assess changes to an IS by performing periodic self-inspections for compliance with PCI-DSS, CJIS, and state and federal data privacy requirements, tests, and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed; ensure corrective actions are taken for identified findings and vulnerabilities.

Minimum Qualifications

  • Bachelor's degree from an accredited college or university with major course work in computer science, management information systems, or closely related field and five years of progressively responsible professional IT experience relevant to the duties of the position which may include systems administration, network administration, database administration, applications analysis and development, and/or information security, two years of which were at the advanced journey level or in a supervisory or project management capacity; OR Bachelor's degree from an accredited college or university with major course work in computer science, management information systems, or closely related field and five years of progressively responsible professional IT experience which may include systems administration, network administration, database administration, applications analysis and development, and/or information security, relevant to the duties of the position, two years of which were at the journey level in information security; OR two years of relevant experience as an IT Professional III in Nevada State service; OR an equivalent combination of education and experience as described above.

 


Requirements

Special Requirements

  • Current CISSP and PCI-DSS ISA certifications
  • A pre-employment criminal history check and fingerprinting are required. Persons offered employment in this position will be required to pay for these items.
  • Current AWS Certified Security, Salesforce Cloud Security Engineer (desired)
  • Work is with Confidential information and requires ONSITE duties and functions.

  • Information Security Manager

    2 months ago

    India Aexonic Full time

    Company Description Aexonic is a global IT solutions company that provides full-cycle services in the areas of software development, IT consulting, mobile application development, Digital Marketing, Cloud-based enterprise solutions, and portal development. Our quality-driven delivery model, combined with technical and business domain expertise, allows us to...

  • Information Security Manager

    2 months ago

    India Aexonic Full time

    Company DescriptionAexonic is a global IT solutions company that provides full-cycle services in the areas of software development, IT consulting, mobile application development, Digital Marketing, Cloud-based enterprise solutions, and portal development. Our quality-driven delivery model, combined with technical and business domain expertise, allows us to...

  • Information Security Manager

    2 weeks ago

    india Movate Full time

    Hello Network We are at Movate Technologies, Looking for an Information Security Manager Job Title: Information Security Manager Experience: 7+ years Location: Bangalore/Hyderabad/Chennai Work from Office No.of Positions: 2 Top 5 Skill Set Hands-on experience with security technologies Experience in Information security and business continuity internal...

  • IT/OT Security

    2 weeks ago

    india BAE Systems Strategic Aerospace Services WLL Full time

    Job Description Job Description• Implement security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns with Qatar’s CSF and NIA Policy framework.• Evaluate risks and develops security standards, procedures, and controls to manage risks. Improves security...

  • Information Security Engineer

    2 days ago

    india Locus Full time

    Information Security Engineer We're looking for a 2-4 yrs experienced Information Security Engineer. Responsibilities: Define, implement, and maintain the Information Security Management System (ISMS) and Privacy Information Management System (PIMS). Plan and execute periodic risk assessments. Work directly with the business units to facilitate risk...

  • Information Security GRC Manager

    2 weeks ago

    india IQ-EQ Full time

    Job Description Responsibilities (how we will measure success) To provide second line support for all aspects of the Group’s Information Security strategy and arrangements encompassing cultural, physical and technology elements throughout the business, with the primary focus being on Info Sec programme governance and oversight. Working as...

  • Senior Manager, Information Security Compliance

    1 month ago

    india Agensi Pekerjaan BTC Sdn Bhd Full time

    Job Description Open Position: Senior Manager, Information Security Compliance (Reputable Company)  A reputable company is currently hiring for Senior Manager, Information Security Compliance to join the team located in the Selangor office. Key responsibilities include: More than 10 years of working experience in the IT Industry with good experience...

  • Information Security Manager

    2 weeks ago

    india SISOL Recruitment Full time

    Job Description Essential Duties & Responsibilities: •Promote and manage IT security and privacy awareness training and education for administrators, teachers, and staff, as well as create proper security incident notification protocols.•Promotes the company's culture, purpose, vision, and basic values.•Must be able to transform the business's...

  • Information Technology Security Manager

    2 hours ago

    india Yalamanchili - Payments and Cards Full time

    About Yalamanchili Yalamanchili is a leading provider in designing and implementing customized, flexible, scalable and innovative banking and payment technology solutions for clients around the world. The company has expanded its services since its inception in 1998 in India. Now the company offers end-to-end solutions for more than 150 clients globally....

  • Information Security Engineer

    2 weeks ago

    india UNCIA Full time

    About the company: We are a dynamic enterprise application software product company catering to NBFCs and Banks with a suite of pure-play SaaS products in the Digital Lending space. We offer a comprehensive suite tailored to meet evolving customer needs, primarily focusing on Lending solutions such as SME Lending, Home Finance, and Supply Chain Finance....

  • Information Security Engineer

    2 weeks ago

    india Piramal Capital & Housing Finance Limited Full time

    QUALIFICATION: Graduate (BSc. IT, BE) with Information Security Certifications – CISSP EXPERIENCE: Candidate must have strong experience in Information Security Management system, Policy & procedures creation, implementation ISO27001 assessment – Specification for a framework of policies procedures that include all technical & operational controls...

  • Information Security Officer

    6 days ago

    india Luminary Talent Sourcing Full time

    Job Description Introduction: We seek an Information Security Officer to join the Infrastructure and Operations department. As the Information Security Officer, you will be responsible for the information security vision, strategy, governance, management, processes and user education. The role also requires technical abilities to assist the team in improving...

  • Information Security Specialist

    2 weeks ago

    india Ciber Global Full time

    Security Specialist – Vulnerability Management Experience – 7 to 12 Years Notice Period - Immediate to 20 Days Location – Chennai (Hybrid) WFO Roles & Responsibilities: Experience working with Vulnerability assessment tools like Nexpose, Nessus & vulnerability response (ServiceNow) information system security vulnerability scanning to discover and...

  • Senior Red Team Lead

    2 weeks ago

    india Security Lit Full time

    Job Description: We are looking for a skilled and experienced professional to join our Information Security Governance team as a Senior Infrastructure, Application & Cloud Offensive Security Assessment expert. This role involves leading and executing comprehensive security assessments, including web application security testing, vulnerability assessment, and...

  • Senior Security Consultant

    2 months ago

    india Nityo Infotech Full time

    Senior Security Consultant (Audit & Compliance) - Internal requirementExperience: 6+ yearsLocation : Pune NP-30 Days Budget -11 LPA Mandatory Skills : ISMS, PCI DSS, Compliance, GRC, Data privacy, ISO 27001 Lead Auditor, Risk Assessment 1) Establish, Implement, Maintain and Improve Information Security Management System (ISMS) as per ISO 27001 Standard. 2)...

  • Information Security Manager

    2 hours ago

    india Promaynov Advisory Services Pvt. Ltd Full time

    Location: Whitefield, Bengaluru. No of years’ experience required: 3 to 6 years Job Role: Perform application threat modelling based on STRIDE/DREAD model, use C4 data model architecture to identify the trust boundaries and security gaps to create application risk profile and remediation recommendations. Advise Product Owners to manage their security...

  • Information Systems Auditor

    1 month ago

    india Marken Full time

    Description Job Title:   Information Systems Auditor  Location: Pune M ain Purpose:    The Information Systems (IS) Auditor serves as a trusted advisor when assessing internal systems and controls, and is a key point of contact with external examiners. Identifies and verifies risks to systems and data, and ensure teams are...

  • Security Operations Center Analyst

    2 hours ago

    india Hitachi Systems India Pvt Ltd Full time

    Hitachi Systems is hiring for SOC analyst Location Mumbai Experience 4-6 YRs Immediate joiner preferred ..!! *Key Responsibilities:** 1. **Advanced Incident Handling:** Identify, investigate, and resolve complex security incidents. This involves analyzing the root cause of incidents, tracking incident progress, and documenting incident resolution. 2....

  • Executive Ii- Information Security

    1 month ago

    India Asian Paints Full time

    **Business Responsibility Areas**: - Lead the SOC Delivery along with Partner. End to End Security Event Analysis and Troubleshooting. - New Device Integration, Validating Current Use Cases and Improvising. - Well Verse with EDR, UEBA, Network & Security Event Analysis. - Next Generation SOC Evaluation and Implementation. - Automating Security threats to...

  • Security Governance and Compliance Head

    1 week ago

    india Agratas Full time

    Job Title: Security Governance and Compliance Head Job Description: We are seeking a highly skilled person with minimum 10 years experience to join our team as Security Governance and Compliance Head. The ideal candidate will be responsible for developing, implementing, and managing security policies and compliance programs to ensure the protection of our...