IT Compliance

Title: IT Compliance & Risk Management Specialist (Contract) - Job#4937

Location: Boston, MA/Hybrid remote

Job Description:

Our client a leading Financial Institution located in the Boston, MA has an immediate opening for an IT Compliance & Risk Management Specialist to join their team in a hybrid remote capacity. The IT Compliance & Risk Management Specialist will develop, update, and maintain IT compliance documentation based on IT compliance standards.

Responsibilities:

• The individual will conduct regular reviews and assessments to coordinate Enterprise Risk Management and Security Assurance for the reporting requirements.
• Perform IT compliance, risk assessment, and mitigation.
• Provide business and technical expertise for compliance including impact level and vulnerability corrective action recommendations and follow-up.
• Develop, update, and maintain IT compliance documentation based on IT compliance standards.
• Conduct regular reviews and assessments to coordinate IT compliance testing and reporting requirements.
• Analyze IT compliance and risk related policies and standards.
• Performing activities associated with the information security framework.
• Assisting business lines completing security control self-assessments, preparing System Security Plan documentation, conducting analysis of security control deficiencies, and monitoring risk management activities.
• Providing status reports of progress.
• Optionally and skills dependent, candidate could participate in independent security controls testing activities such as technical scanning or management/operational reviews.
• Executing continuous monitoring activities, including recurring access reviews, and preparing security-related documentation.
• Assisting peers within the Information Security function with ad hoc risk assessments, such as software/hardware compliance reviews.

Required

• Bachelors degree
• Working knowledge of NIST 800 series Special Publications and IT Security Program
• Knowledge and experience normally acquired through, or equivalent to, the completion of a bachelor's degree and 3 - 5 years of job-related experience
• Certification in related technical discipline desirable
• Working knowledge of FISMA, or equivalent IT security programs
• Background in information technology, information security, computer science, data analysis or equivalent preferred
• Knowledge and experience with risk assessments, security plans, and test and evaluation activities
• Ability to recommend corrective action plans
• Ability to interpret security policies and standards and understand how they can be best applied within an organization
• Good organization skills with the ability to exercise discretion and ingenuity to determine the proper course of action while following established standards
• Ability to be innovative with resourcefulness and a strong drive for results
• Strong communication skills to support team members within the Information Security function and business lines

About Delphi-US

Delphi-US is a national recruiting firm based in Newport, Rhode Island. We specialize in IT, Engineering and Professional Staffing services for premier corporations and a multitude of industries across the United States. We are the Peacemakers In The Talent War – bringing the best and brightest talent to Employers of Choice, enabling critical project success, fostering progressive employment relationships, and promoting competitive advantages for our Clients and the Talent Marketplace we serve. Delphi accomplishes this with a proprietary skill-based and cultural matching process that results in higher qualified submissions along with increased interviews and offer rates. You’ll find our team is highly experienced, friendly, professional and ready to advocate on your behalf, armed with industry trends, and an understanding of employer expectations.