Giselle B.
03-26-2009, 06:50 AM
Hello all!
This is a long term contract with the potential to go permanent in the Metro Atlanta area. All applicants should be local to the state of Georigia. Please send me a private message or a direct email to gbell@vereduscorp.com
Thanks in Advance!
Giselle
Information Services Analyst 5: PCI Compliance
PCI Compliance expert needed: Under limited supervision, this person will conduct detailed Information Security Control Assessments of information systems with cardholder data maintained internally, as well as those systems outsourced to third-party service providers per established policy and procedures. Conducts PCI application assessments, including infrastructure components; communicates recommendations to clients in verbal and written format. This includes documentation results of assessments; to include non-compliance issues, associated recommendations for remediation plans, and supporting documentation where applicable. Also responsible for reviewing assessment results with senior level Business Unit (BU) management and members of the Enterprise Technology Risk Management (ETRM) Team, as appropriate.
If selected for this position, you will ensure that our cardholder systems are secured and comply with the enterprise information security standards, policies, and practices. You will assist with PCI guidance and interpretation and be involved with the design of secure architectures. Other responsibilities: participate in the development of effective remediation plans and associated timelines for resolving issues identified during the assessment process, assist BU management with the implementation of these plans as required, and prepare and successfully transfer completed Security Assessment documentation to Remediation Management.
Under limited supervision, leads and/or participates in varied project assignments, as assigned by the Security Assessment Manager. Maintains a working knowledge of information security assessment industry standards\best practices and compliance with information security-related laws and regulations (e.g., SEC, FDIC, FFIEC and the Gramm-Leach-Bliley Privacy Act).
REQUIREMENTS:
* 3+ years experience in enterprise-wide information security
* Knowledge of information security assessment industry standards/best practices and compliance with security laws and regulations (SEC, FDIC, FFIEC, and Gramm-Leach Bliley Privacy Act)
* 3+ years experience in security control assessments of internal and outsourced information systems
* PCI-DSS knowledge
* Current designation and maintenance of a Certified Information Systems Security Professional (CISSP) or similar certification is highly desirable.
This is a long term contract with the potential to go permanent in the Metro Atlanta area. All applicants should be local to the state of Georigia. Please send me a private message or a direct email to gbell@vereduscorp.com
Thanks in Advance!
Giselle
Information Services Analyst 5: PCI Compliance
PCI Compliance expert needed: Under limited supervision, this person will conduct detailed Information Security Control Assessments of information systems with cardholder data maintained internally, as well as those systems outsourced to third-party service providers per established policy and procedures. Conducts PCI application assessments, including infrastructure components; communicates recommendations to clients in verbal and written format. This includes documentation results of assessments; to include non-compliance issues, associated recommendations for remediation plans, and supporting documentation where applicable. Also responsible for reviewing assessment results with senior level Business Unit (BU) management and members of the Enterprise Technology Risk Management (ETRM) Team, as appropriate.
If selected for this position, you will ensure that our cardholder systems are secured and comply with the enterprise information security standards, policies, and practices. You will assist with PCI guidance and interpretation and be involved with the design of secure architectures. Other responsibilities: participate in the development of effective remediation plans and associated timelines for resolving issues identified during the assessment process, assist BU management with the implementation of these plans as required, and prepare and successfully transfer completed Security Assessment documentation to Remediation Management.
Under limited supervision, leads and/or participates in varied project assignments, as assigned by the Security Assessment Manager. Maintains a working knowledge of information security assessment industry standards\best practices and compliance with information security-related laws and regulations (e.g., SEC, FDIC, FFIEC and the Gramm-Leach-Bliley Privacy Act).
REQUIREMENTS:
* 3+ years experience in enterprise-wide information security
* Knowledge of information security assessment industry standards/best practices and compliance with security laws and regulations (SEC, FDIC, FFIEC, and Gramm-Leach Bliley Privacy Act)
* 3+ years experience in security control assessments of internal and outsourced information systems
* PCI-DSS knowledge
* Current designation and maintenance of a Certified Information Systems Security Professional (CISSP) or similar certification is highly desirable.