GRC Consultant: Lead Auditing Experience (Iso 27001 And SOC 2 Experience Preferred)

Pivot Point Security Chicago , IL 60602

Posted 2 months ago

Are you an experienced lead information security auditor? Have you authored policies? Have you worked as a consultant before?

If you also thrive in a dynamic environment, like challenges and believe work and fun are not mutually exclusive, then maybe youre the one were looking for. We need team players who are smart and creative, who love IT assurance and who want to grow with a growing company: who are as comfortable talking with senior management about Information Security Management Systems and attestation strategies as they are with a developer or sysadmin about TLSv1.2.

We are looking for the right person with lead auditing experience to join our team as a GRC (Governance, Risk Management and Compliance) Consultant to work in a collaborative fashion with our clients to help them manage Information Security & compliance risk as well as prove the same to management and customers. While we may consider other types of lead auditor experience, our primary preference for this role is those who have led SOC 2 and/or ISO 27001 audits. In this role, you will spend 10 - 35% of your time at client sites and the rest of your time working from wherever you work most effectively.

We expect this person will:

  • Track and ensure adequate and timeley resolution to all audit and risk assessment findings or issues relating to information security, and never miss a deadline.

  • Effectively and appropriately communicate audit engagement reports and recommendations to client management and resolve any client concerns or questions.

  • Meet/exceed defined contribution goals for services you will deliver.

  • Achieve target Net Promoter Scores for your service by managing client relationships.

  • Ensure 100% certification success rate on ISMS projects.

  • Earn and gain the trust and respect of the PPS team.

  • Grow into a role with increasing responsibility

The right person HAS the following characteristics (these are non-negotiable):

  • Personal integrity, a highly transparent nature, and a mind-set of mutual benefit.

  • Thrives on and is worthy of self-managing the projects they are responsible for (micro-management is a four-letter word at PPS).

  • Has very high Self-Expectation (self-motivated, self-aware, self disciplined, self-improving, and self-governed). You hold yourself to a higher standard than others do.

  • Enjoys work and life, values a balance, and is looking for a company that shares those ideals (understands that you do not get a second chance to see your childs first school play and that it does not matter if the report gets done at 3PM or 10PM, if it gets done).

  • Highly consultative and collaborative nature; someone who enjoys helping others achieve ambitious business and information assurance goals.

  • Effectively and proactively communicates in writing/speech both internally/externally from the server room to the board room.

  • The ability to work from anywhere as this role is remote/virtual in nature.

  • A good sense of humor and the ability to laugh at themselves.

The right person usually has the following experience (these are somewhat negotiable):

  • Significant experience leading information security audits with a preference for IS0 27001 and SOC 2 audits or assessments

  • Experience in leading or knowledge with implementations

  • Experience authoring policies and procedures

  • Significant experience working as a consultant working in a consulting firm

  • Significant knowledge of ISO 27001/2 and its derivatives (e.g., HITRUST, Shared Assessment) as much of our consulting and collaboration is around an ISO 27001 Information Security Management System.

  • Solid knowledge of the NIST 800-171/FISMA framework and is derivatives (e.g., Fed RAMP, CMS Information Security Program) as many of our clients serve government customers.

  • Enough Information Technology and Information Security experience to contextualize and make their recommendations relevant and valuable.

  • Experience and knowledge with Governance, Risk Management and Compliance

  • A desire to take on roles of increasing responsibility including defining services, managing teams and coordinating resources.

The right person often has the following attributes (these are negotiable):

  • Experience with the myriad of regulatory compliance frameworks our client base is subject to (e.g., HIPAA, PII, PCI-DSS, SOX, STARS, NERC-CIP).

  • Prior experience developing services for delivery and managing a team.

  • Certifications that demonstrate to our clients our commitment to excellence in our craft (e.g., ISO 27001 Lead Implementer, CISA, CISSP, ISO 27001 Lead Auditor, MCSE, CEH, OSCP).

  • Familiarity with related standards (e.g., SSAE-16 SOC1, SOC2, ISO-22301, ISO-9001).

About Pivot Point Security

Were a small, but growing, company. So, we do our best to keep the right people at PPS (most of our team has been together for 6+ years) by aspiring to:

  • A high-performance work environment with extremely passionate, driven and experienced technical professionals. At Pivot Point Security, you will find colleagues you can respect and learn from.

  • A management system where all employees participate in establishing the companys goals/initiatives and have ready visibility into the companys performance. Were working hard to create processes and metrics to measure our, *and your) success.

  • An environment where relationships are important, internally and externally. We provide the highest levels of customer service and strive to always exceed our clients expectations.

  • A competitive salary (more than most) with a F100 level benefits package (e.g., medical, dental, vision, HCFSA, 401K w/ company match, 529 College Savings, vacation and personal days).

  • Providing individuals, the opportunity to develop by giving them the resources required, surrounding them with great colleagues, and allowing them to take on new/big challenges.

As a Company, We:
1.Tell the Truth (Honesty is almost always the best policy)
2.Do The Right Thing (Keep commitments, over-communicate, be transparent, confident, worthy of/thrive on freedom)
3.Smile (Life is too short not to likeability is nearly as important as competence)
4.Seek Win-Win (Think cooperative, not competitive - seek mutual benefit in all interactions)
5.Consult (Every situation is unique; listen, understand, educate, and express a clear opinion)
6.Simplify (Less is more )
7.Are Customer Focused

At Pivot Point Security, we dont just accept difference we celebrate it, we support it, and we thrive on it for the benefit of our employees, our clients, and our community. Pivot Point Security is proud to be an equal opportunity workplace

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Guest Experience Lead (Gel)


Posted Today

VIEW JOBS 11/19/2019 12:00:00 AM 2020-02-17T00:00 Description: McDonald's Works for Me. I'm going places. I want to have fun, I like to be challenged, and I need a schedule that works for me. The Job for Me – Get a job that fits your life, inspires your best, and moves you forward. Choose your hours. Pursue your education. Build your skills and be yourself. The Team for Me – Our people want to say YES — to working with energy and purpose, learning new skills, serving delicious food and creating feel-good moments with our guests. Does this sound like you? You'll fit right in. The Place for Me – From here, you can go further than you thought possible. Reach your goals and build your future with college tuition assistance, high school completion programs, English language courses and valuable job skills. We are committed to being America's best first job. Let's talk. Make your move. See a day in the life of a Guest Experience Lead at McDonald's Requirements: We believe in letting you do you. If you're looking for a part-time job that supports your full-time ambition, you've come to the right place. And right now we have an awesome opportunity for Guest Experience Leaders to work in our restaurant between the hours of 8am and 8pm. The Guest Experience Leader gets to create feel-good moments everyday with customers by: * Greeting guests and communicating with them while ordering * Offering help with using the ordering kiosks * Offering assistance to those in need of some extra hands * Checking with them once they have their food to make sure they're satisfied, or to see if they need anything else * Ensuring kids receive a kid treat * Handling any concerns * Communicating with the restaurant team to provide feedback and recommendations All you'll need is an outstanding attitude, willingness to learn and grow and the capability to excel in a fast-paced, team environment. We'll teach you the rest. We offer great pay, tremendous benefits and a chance to grow like you wouldn't believe. Sound good? Give us a try! You must be 16 years of age or older to work as a Guest Experience Leader at corporate owned and operated McDonald's restaurant. Additional Info: A job as a Guest Experience Leader at a McDonald's Corporate owned restaurant gives you the chance to grow your skills and meet great people, while earning some outstanding benefits opportunities along the way. Those can include: * Competitive pay * Medical, dental and vision coverage * 401k with matching contributions * Paid time off equal to 2% of gross earnings * Unpaid Leaves of Absence * Education through Archways to Opportunity including opportunities to earn a High School degree, college tuition assistance and English classes as a second language * Discount programs * Free meals / meal discounts This job posting contains some information about what it is like to work in a McDonald's restaurant, but it is not a complete job description. People who work in a McDonald's restaurant perform a number of different tasks every day, and this posting does not list all of the essential functions of this job. McDonald's Corporation and McDonald's USA, LLC (the "Company") are committed to a policy of Equal Employment Opportunity and will not discriminate against an applicant or employee of a corporate-owned restaurant on the basis of age, sex, sexual orientation, race, color, creed, religion, ethnicity, national origin, alienage or citizenship, disability, marital status, veteran or military status, genetic information, or any other legally-recognized protected basis under federal, state or local laws, regulations or ordinances. Applicants with disabilities may be entitled to reasonable accommodation under the terms of the Americans with Disabilities Act and/or certain state or local laws. A reasonable accommodation is a change in the way things are normally done that will ensure an equal employment opportunity without imposing an undue hardship on the Company. Please contact if you need assistance completing any forms or to otherwise participate in the application process or to request or discuss an accommodation in connection with a job at a McDonald's corporate-owned restaurant to which you are applying. Mcdonald's West Chicago IL

GRC Consultant: Lead Auditing Experience (Iso 27001 And SOC 2 Experience Preferred)

Pivot Point Security