Business Information Security Advisor in New Hyde, NY at Pyramid Consulting, Inc

Date Posted: 11/13/2019

Job Snapshot

Job Description

Immediate need for a Business Information Security Advisor for a position in the Automotive Industry. This is 5+ months contract opportunity with long-term potential located in New Hyde, NY. Please review the job description below:

Job ID: 18-00624

Key Responsibilities:/Key Requirements and Technology Experience:
  • Works under the direct guidance of the Sr. Manager, Information Security of Retail Solutions to ensure adoption and compliance with Client Corporate Security Standards while enabling business success.
  • Periodically perform risk assessments of the F&I applications, systems and business processes to verify compliance with the Client Auto Security Standards and prioritize the remediation of gaps based on risk to the organization. Coordinate the remediation of all gaps identified.
  • Assist with facilitation and management of customer security audits and requests. Complete security compliance questionnaires and provide requested documentation to customers in a timely manner. Coordinate and host customer onsite audits as necessary. Coordinate and manage remediation efforts, if any, as a result of these audits.
  • Oversees application and system/network security vulnerability assessments and coordinates remediation efforts for the F&I web site applications and systems.
  • Provides security guidance for new projects to ensure security best-practices are implemented and that projects are developed in compliance with Client Corporate Security Standards.
  • Assist with subpoena requests and handling depositions working with internal/external Legal Counsel.
  • Addresses findings from quarterly access reviews.
  • Administrates and maintains security log system and ensures logging standards are implemented with new F&I applications.
  • Coordinates with the technology and business areas to ensure they maintain disaster recovery and business continuity plans and procedures for the Client F&I suite of solutions. Assists with disaster recovery testing efforts for Client customer-facing web site applications.
  • Meets as scheduled, or as needed, with various departments (e.g., IT, Audit, Legal) to provide updates and information on security issues. Also responsible for responding to requests for information to support compliance initiatives.
  • BA/BS Degree, preferably formal studies in Computer Science or Information Systems or equivalent
  • 5-10 years' experience in IT Security, Risk and/or Compliance or equivalent
  • Understanding of web-based applications, infrastructure, and architecture
  • Strong MS office skills with Excel and Access
  • Ability to work in a fast-paced and dynamic environment
  • Ability to work in a team and independently to fix issues with little or no supervision
  • Excellent organizational, project management and follow-up skills
  • Ability to build effective working relationships at all levels of the organization
  • Ability to explain risk, prioritize remediation efforts against other projects and effectively influence teams to focus on successful completion of security projects.
  • Establish effective working relationships at all levels of the organization
  • Excellent communication skills
  • CISA, CISSP, CISM, or other security certification(s).

Our client is a leading Automotive Industry and we are currently interviewing to fill this and other similar contract positions. Qualified candidates should apply online for immediate consideration.J2W:CB3