IT - Cyber Security Controls Assessor - Career

Summary: Location: Oakland, CA Duration: 12 Months Deep understanding of security framework and IT assessment process; detail oriented Responsibilities: Perform multi-platform assessments based on predefined test objectives and test plans.Increase your chances of an interview by reading the following overview of this role before making an application.Retest controls that have been remediated or updated due to previously identified deficiencies.Obtain, review, and interpret evidence to validate effective control performance.Execute and report on IT Compliance assessments per industry best practices and regulatory standards (e.g., NIST SP800-53, SP800-115, SOX, NERC CIP).Review organizational IT policies, standards, and procedures to identify control points mitigating business risks.Address vulnerabilities, gaps, or control deficiencies and work with stakeholders to establish sustainable resolution plans.Identify risks associated with control failures and support the identification of mitigating controls.Partner with control owners to ensure periodic updates of control documentation.Perform other tasks to ensure Compliance commitments are met.Support the Compliance Sr.Manager/Manager as needed.Requirements: BA/BS in Computer Science, Business, or equivalent experience.Minimum of 3 years of general IT experience, including IT security or IT risk management experience.Experience using Excel worksheets, workbooks, and formulas.Experience managing multiple projects with conflicting priorities.Required Skills: Strong oral and written communication skills.Strong analytical skills.Understanding of application, database, network, and systems security.Understanding of general computing controls (GCCs).Able to identify complex control gaps.Understanding of auditing standards and frameworks (e.g., COBIT) and IT services management best practices (e.g., ITIL).Excellent planning, organizational, and project management skills.Able to multi-task projects or assessments.Ability to work with minimal supervision in a fast-paced environment.Detail oriented.Preferred Skills: Utility Industry Experience.Big 4 experience.Demonstrated experience with Sarbanes Oxley or NIST SP800-53 security controls catalog.Benefits: Client laptop will be provided. xmcpwfu