Information Risk Manager Jobs

IT Security and Compliance Manager

Location: Boca Raton, FL (On-Site)

Salary: $90/hr C2C/1099....

• Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time

Summary:

The candidate will have hands-on experience performing PCI_DSS assessment, SOC2 Type1 and Type2 audits, developing KPI and reporting matrix, and formulating cost-benefit analysis to help align SRCO and Network Operations technology solutions with business initiatives and delivery. Have a good understanding of Network and Security technology solutions and can articulate them to meet current and future FTE’s Information Technology and business initiatives.

Responsibilities:

• Perform annual PCI annual PCI certification, perform interim assessments, and work with the broader Information Technology team to remediate identified gaps. Ensure that established timelines of the yearly certification are met.
• Assist with managing supply chain oversight, including establishing, maintaining, and performing a risk assessment. Develop risk matrix and management reporting.
• Coordinate and perform Department’s SOC2 assessment. This includes coordination with both the internal teams and external parties to obtain documentation and ensure that established timelines are met.
• Assist the SIRT team in formulating testing schedules, conducting tabletop exercises, and facilitating lessons learned workshops and management reports.
• Develop and maintain Department’s KPI and create monthly and quarterly reporting for the leadership.
• Perform annual review and adhoc changes in Information Security Policies and ensure compliance with Florida State Statues, PCI-DSS, and industry best practices.
• Manage vulnerability program to ensure remediation based on established Service Level Agreements, including PCI-DSS and Cybersecurity Frameworks. Develop management reporting.
• Work with SRCO (Security Risk and Compliance Officer) and Network Operations team to develop and maintain a comprehensive list of Information Security and Network Operations hardware deployment in FTE’s data centers and roadside sites.
• Maintain and enhance SRCO and Network Operations software and tools to identify licensure, including annual renewals. Work with the TDC procurement team to explore opportunities for consolidating renewals.
• Assist Department with annual and adhoc audits for compliance with State of Florida status and established compliance requirements.

Required Skills:

• Strong experience with managing and organizing Security Incident Response Team (SIRT) activates
• Must have 5 to 7 years of experience using GRC tools such as Archer and ServiceNow.
• Must have strong presentation and written communication skills.
• Strong working knowledge of Excel, Visio, MS-Word, and developing PowerPoint presentations.
• Must have 3 to 4 years hands-on experience in performing IT business processes and cost-benefit analysis.
• Have a good understanding of Information Technology tools and technology supporting overall IT organization and business.
• Must have 4 to 6 years hands-on experience with SOC2, Type1, and Type 2 assessment
• Must have 5 to 7 years hands-on experience in performing PCI-DSS assessment

Education:

• Bachelors degree or equivalent experience.

Certification:

• Certified Information Security Manager (CISM) (Preferred)
• Certified Information Security Auditor (CISA) (Preferred)

*

TekBank is committed to a diverse and inclusive workplace. TekBank is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.