Senior Technology Risk Engineer
Description Position at Apexon Company Description:
Apexon is a digital-first technology services firm backed by Goldman Sachs Asset Management and Everstone Capital.
We specialize in accelerating business transformation and delivering human-centric digital experiences.
For over 17 years, Apexon has been meeting customers wherever they are in the digital lifecycle and helping them outperform their competition through speed and innovation.
RESPONSIBILITIESExperience Level5-10 yearsSkills & Job ResponsibilitiesNeed 2 resources:
IT Risk - Senior Technology Risk Engineer - Contractor role Experience Requirements:
o6
years of experience working in technology audits, Risk, Information Security, or Information Technology o2
years of SOC or SOX IT control execution or testing oExperience using GRC tools, such as TeamMate, Wdesk, or Archer, is preferred but not required oBachelor's degree in a related field is strongly desired oSecurity, risk and audit specialized training highly recommended oProfessional Certification strongly preferred but not required if demonstrated equivalent work
Experience:
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager, (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) Responsibilities Description:
oDemonstrated experience in Risk and Control Self Assessments, Audits, or exams for technology or information security oDemonstrated ability to audit general IT controls including related infrastructure (Active Directory), operating systems (UNIX, Linux, Windows), databases (Oracle DB and MS SQL DB), and applications (Oracle, PeopleSoft, Salesforce, etc.
) oDesign and perform root cause analysis, control gap assessments, and process improvement projects using technical and problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions oUnderstand Industry standard frameworks for technology, such as COBIT, ISO, NIST, SANS, and others to design Governance, Risk and Control frameworks, and systems for technology and information security oDesign and develop internal control documentation including narratives, process and data flows, and other supporting work papers oModerate to in-depth understanding of business environment and risks associated with the financial services industry, IT environments, and information dataflow oUnderstand IT audit principles and audit procedures, and determining and evaluating the severity of potential issues identified during testing, and to provide guidance to more junior team members oUnderstand IT organization business processes and systems (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns) oParticipate in multiple projects concurrently, works under pressure well oStrong verbal and written communication skills with comfort around presenting new ideas and presentations to senior management oDemonstrated track record of meeting time commitments oDemonstrated track record of working effectively across functional and organizational lines oDemonstrated knowledge of risk management tools oAbility to work in teams, and/or as an individual contributorQualificationsBachelor's Degree in related field is required
Disclaimer:
If you feel that this is a good match for your skillsets, please submit a current word version of your resume along with a cover letter describing your skills, experience and salary expectations.
We are an Equal Opportunity Employer (EOE).
Recommended Skills Active Directory Group Assessments Auditing Business Process Improvement Business Processes Certified In Risk And Information Systems Control Estimated Salary: $20 to $28 per hour based on qualifications.
Apexon is a digital-first technology services firm backed by Goldman Sachs Asset Management and Everstone Capital.
We specialize in accelerating business transformation and delivering human-centric digital experiences.
For over 17 years, Apexon has been meeting customers wherever they are in the digital lifecycle and helping them outperform their competition through speed and innovation.
RESPONSIBILITIESExperience Level5-10 yearsSkills & Job ResponsibilitiesNeed 2 resources:
IT Risk - Senior Technology Risk Engineer - Contractor role Experience Requirements:
o6
years of experience working in technology audits, Risk, Information Security, or Information Technology o2
years of SOC or SOX IT control execution or testing oExperience using GRC tools, such as TeamMate, Wdesk, or Archer, is preferred but not required oBachelor's degree in a related field is strongly desired oSecurity, risk and audit specialized training highly recommended oProfessional Certification strongly preferred but not required if demonstrated equivalent work
Experience:
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager, (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) Responsibilities Description:
oDemonstrated experience in Risk and Control Self Assessments, Audits, or exams for technology or information security oDemonstrated ability to audit general IT controls including related infrastructure (Active Directory), operating systems (UNIX, Linux, Windows), databases (Oracle DB and MS SQL DB), and applications (Oracle, PeopleSoft, Salesforce, etc.
) oDesign and perform root cause analysis, control gap assessments, and process improvement projects using technical and problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions oUnderstand Industry standard frameworks for technology, such as COBIT, ISO, NIST, SANS, and others to design Governance, Risk and Control frameworks, and systems for technology and information security oDesign and develop internal control documentation including narratives, process and data flows, and other supporting work papers oModerate to in-depth understanding of business environment and risks associated with the financial services industry, IT environments, and information dataflow oUnderstand IT audit principles and audit procedures, and determining and evaluating the severity of potential issues identified during testing, and to provide guidance to more junior team members oUnderstand IT organization business processes and systems (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns) oParticipate in multiple projects concurrently, works under pressure well oStrong verbal and written communication skills with comfort around presenting new ideas and presentations to senior management oDemonstrated track record of meeting time commitments oDemonstrated track record of working effectively across functional and organizational lines oDemonstrated knowledge of risk management tools oAbility to work in teams, and/or as an individual contributorQualificationsBachelor's Degree in related field is required
Disclaimer:
If you feel that this is a good match for your skillsets, please submit a current word version of your resume along with a cover letter describing your skills, experience and salary expectations.
We are an Equal Opportunity Employer (EOE).
Recommended Skills Active Directory Group Assessments Auditing Business Process Improvement Business Processes Certified In Risk And Information Systems Control Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
