This position will be responsible for developing detailed requirements, design specifications, and detailed remediation plans for strong controls in the following IT Infrastructure security areas: Anti-virus, Device Encryption, Segmentation, Logging & Monitoring, Standardized Builds, Patching, and Vulnerability Assessment.
This project will span at least 6 months and includes delivery of detailed remediation plans to a corporate project team.
This individual will be the primary project representative for the Information Risk department to Company A management and A corporate interaction.
Additional resources will be available from the internal Information Security Team, Technical Operations team, and, as needed, additional temporary support for technical development of the solutions.
This individual should have strong business acumen, detailed familiarity with the Credit Card industry and regulations, and detailed understanding of Security best practices for IT Infrastructure Security.
Performs tasks including/related to risk assessments, process development, analysis of security threats, trends and architecture.
Recommendation of appropriate security controls, frequency, reporting and logging.
Quantitative and qualitative analyses to determine control impact to information security resources and existing infrastructure.
Performs cost benefit analysis in assessing options for mitigating risks threats and exposures to acceptable levels.
Development and assuring consistency for deliverables across multiple control areas.
Managing and reporting status of identified project risks.
Interface regularly with executives, corporate counterparts, and technology organization.
Clearly communicate project status, architecture, and requirements to the internal and project team.
Write and socialize any necessary associated policies, standards, or control processes introduced by the project.
**Ability to work in the US without sponsorship (EAD, Green Card, US Citizen)