Overview
Tekwissen Group isa workforce management provider throughout the USA and many othercountries in the world. The below job opportunity is to one of Ourclients who is a global leader in analytical testing deliver acomprehensive portfolio of complete solutions systems softwareconsumables and onsite and online services with one overarchingpurpose: to help make the world healthier cleaner and moresustainable.
Job Title: IT SecurityArchitect (NonExempt)
Duration: 9 Months
Location: Boston MA 02118
Job Type: Contract
Work Type: Hybrid
Job Description:
Purpose
* Client issearching for a Risk and Compliance Analyst to join our risk andcompliance program.
* As part of the CISO function directly reporting to theHead of Risk and Compliance the Risk and Compliance Analyst willsupport the design and operation of our compliance programsupporting a 1B in revenue global manufacturing and servicesbusiness.
* Thesuccessful candidate will have the opportunity to partner with aglobal risk and compliance team in Boston Massachusetts; PuneIndia; and Rodgau Germany.
* The security and compliance team will collaborateregularly within a client office location.
* The successful candidate will bring expertiseand leadership across risk and compliance disciplines includingcontrol design and operation risk management third party auditssuch as SOC 2 ISO 27001 UK Cyber Essentials Plus and FedRAMPsecurity sales enablement third party vendor risk managementcustomer and vendor security contract reviews and the developmentof policies and procedures.
* This role requires a strong work ethic the right blendof technical and nontechnical skills and the ability to alignsecurity decisions to business requirements across leadershipwithin a global organization.
Responsibilities
* Ensuring the successful design implementationdocumentation and operation of information technology generalcontrols.
* Implementcontrol best practices and business unit security ownership acrossthe client organization.
* Partner closely with other team members within the CISOfunction within the areas of security architecture and engineeringand security incident response and threat intel to ensure alignmentwith the crossteam requirements.
* Build a risk management program andgovernance risk and compliance council that aligns to ISO 27001.
* Assist global salesand presales teams in responding to customers security andcompliance related inquiries and questionnaires.
* Complete SOC 2 Type 2 UK CyberEssentials Plus ISO 27001 audits and incorporate additional auditstandards as the needs of the business evolve.
* Evaluate client requirements forCMMC 2.0 compliance and build a roadmap and business case.
* Lead the developmentmaintenance and review of information security policies andprocedures.
* Collaborate with business stakeholder across clientincluding but not limited too R&D Quality Management andOperations.
* Workcross functionality with the legal team regarding data privacy andsecurity contract reviews for vendors and customers.
* Support US Federal GovernmentCMMC 2.0 and FedRAMP compliance as needed.
* Support security investigations andresponding to information security incidents.
* Mentor and coach junior teammembers.
* Supportinformation security awareness activities.
* Nothing in this job description restrictsmanagements right to assign or reassign duties and responsibilitiesof this job at any time.
Basic Qualifications
* bachelors degree in accounting ComputerScience Information Systems or related field.
* 13 years experience in Risk andCompliance.
* Experience in at least two of the followingaudits/regulations: SOC 1 SOC 2 SOC 3 ISO 27001 ISO 27017 ISO 27018ISO 27701 FISMA FedRAMP SOX 404 HITRUST CSF HIPAA ISO 9001 GxP 21CFR Part 11 GAMP 5 EU Annex 11 NIST
Requirements.
* Englishlanguage proficiency
* Potential Travel 10%
PreferredExperience
* Masters degree
* Public Accounting IT Auditexperienc
* Experiencewith cloud multicloud hybridcloud and onprem technologyarchitecture
* AWS andAzure Cloud IaaS expertise
* CISSP CISM CISA CIA or similar certifications preferred
Technology Expertise Preferred
* Amazon Web Services (AWS) and Microsoft Azure(AZURE)
* OperatingSystems: Windows & Linu
* DP SSO MFA Microsoft Okta
* IGA SailPoint Saviynt
* PAM Beyond Trust Saviynt CyberArk
* MDM Intune JAMFWorkspace One
* GRCService Now
* Atlassian Suite JIRA & Confluence
TekWissen Group is an equal opportunityemployer supporting workforce diversity.