Security Consultant
Keilty Bonadio
full-time
Posted on:
Location Type: Remote
Location: New York • United States
Visit company websiteExplore more
Tech Stack
About the role
- Performing mid and large IT and information security risk and compliance assessments, PCI engagements, audits, gap analyses, and remediation
- Actively lead projects in the areas of PCI-DSS and ISO 27001
- Communicating with project stakeholders to effectively convey requirements of technical and process improvements
- Develop customized policies, procedures and controls, disaster recovery plans and technical documentation for applications, systems and infrastructure
- Possess an in-depth knowledge of IT security and various frameworks (i.e. PCI, ISO, NIST, CMMC etc.)
- Experience in managing policy exceptions, including working directly with the teams to document exceptions, identify compensating controls and remediation action plans
Requirements
- Must be PCI-QSA (Qualified Security Assessor) certified or have held the certification within the last three years
- At least one current Information Security certification (i.e. CISSP, CISM, ISO 27001:2022 Lead Implementer)
- At least one current IT Audit certification (CISA, GSNA, ISO 27001:2022 Lead Auditor, CIA)
- Minimum of an associate’s degree. BS degree is a plus
- Minimum 4 years of experience in the Cyber Security, Information Assurance, Enterprise Risk or Compliance field.
Benefits
- Flexibility in work hours
- Inclusive work environment
- Mentoring and training programs
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
risk assessmentcompliance assessmentPCI engagementsauditsgap analysisremediationpolicy developmentdisaster recovery planningtechnical documentationIT security frameworks
Soft Skills
communicationstakeholder managementproject leadership
Certifications
PCI-QSACISSPCISMISO 27001:2022 Lead ImplementerCISAGSNAISO 27001:2022 Lead AuditorCIA