Global External Risk Assessments Lead 8/17/2016

Security Services Company Chicago, IL

Company
Security Services Company
Job Classification
Full Time
Company Ref #
28842755
AJE Ref #
575911484
Location
Chicago, IL
Job Type
Regular

JOB DESCRIPTION

APPLY
GLOBAL EXTERNAL RISK ASSESSMENTS LEAD (2):

Identify control gaps through assessing third party risks against Aon's control definitions and identify control gaps.

KEY ACCOUNTABILITIES:

Perform security assessment review of third party responses within Aon's risk management platform tool (customized Archer)

Create internal riskreports following Aon's reporttemplate documenting risk severity and identified findings

Partner with RCA's Risk & Controls function to communicate identified findings for mitigation

Produce weekly status reports and attend status meetings

Qualification Detail / Level Required

Education: Bachelor's degree or international equivalent or equivalent work experience

Professional Preferred, CISA or CISSP, ISO27001 Lead Assessor, CTPRP

SKILLS

* Minimum 5-6years in IT experience with 3-4years of security/infrastructure protection and information technologyauditexperience

* Multi-platform knowledge. Experience in UNIX, Windows and IP intranet/Internet security environments including: firewalls, intrusion detection, incident response, policy writing, vulnerability testing, operating system hardening, regulatory compliance, and data classification

* Solid knowledge of industry standard corporate security and network policies and procedures

* Demonstrated competency in project management in a cross-functional environment

* Experience linking legal and regulatory statutes with corporate policies

* Demonstrated competency in developing effective solutions to diverse and complex business problems

* Strong understanding of ISO27002 and PCI DSS Standards

* Strong understanding of the COBIT, Shared Assessments SIG, NIST 800-53a , and frameworks

* Knowledge of regulatory requirements such as Sarbanes Oxley and Financial Services Authority (FSA)

* Security/Privacy Legal Compliance (SOX,, HIPAA etc.)

* Cloud security and Cyber