Senior Associate, Information Security & Assurance-Servicenow (100% Remote)

Cognizant Technology Solutions Teaneck , NJ 07666

Posted 2 months ago

This position's scope is focused on the Cybersecurity Oversight and Governance for Client Service Delivery. Cognizant requires a Senior Associate, Corporate Security

  • ISA to help execute the Governance Program. The Senior Associate, Corporate Security

  • ISA supports strategic and technical initiatives, including performance of Operational Risk Assessments, managing Risk Acceptance activities, developing annual risk posture and remediation recommendation report, and completion verification reviews of security projects and initiatives. The Senior Associate, Corporate Security

  • ISA will report directly to a Senior Manager, Corporate Security

  • ISA.

Key Responsibilities include:

  • Assist with risk assessment activities coordinating with the security team, Senior Leadership, vendors, and contractors.

  • Serve as an advisor in the development, implementation, and maintenance of a company-wide information security policy and control framework.

  • Provide process improvement support in the functional area of Governance, Risk and Compliance.

  • Provide periodic analysis of corporate risk position, based on analysis of current controls status and current cyber threat landscape.

  • Assist with items to be added/maintained in the corporate risk register.

  • Assist in the development, configuration, and implementation of GRC toolsets.

  • Collect evidence of project completions and maintain program records.

  • Monitor developments in the information security industry including vendor strategies and communicate on the potential impact on or applicability to the organization.

  • Promote security culture and drive continuous security improvements. Ensure technical and operational security controls are incorporated into new systems and applications through participation in planning groups and the review of new systems, installations, and other major changes.

  • Provide assistance to internal teams and external entities concerning the security of information and critical data processing capabilities.

  • Interpret client and Regulatory controls across all verticals and properly apply the specifications across the operational responsibilities to help build cost-effective, scalable security controls and infrastructure to sustain certification levels across the enterprise.

  • Encourage new ways of thinking and performing activities to increase automation capabilities.

  • Build rapport, credibility, and cohesion across all business unit teams and IT teams in the course of managing the projects.

  • Engages with and participates with cross-functional independent representations of management to ensure appropriate oversight and governance of the security program.

  • Ensures that assessment functions periodically review key programs related to information protection to obtain independent assessments of the security program effectiveness.

  • Periodically reports progress to management, and assesses and measures results related to Information Security activities

  • Other duties as assigned

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Manager Information Security & Assurance

Cognizant Technology Solutions

Posted 3 months ago

VIEW JOBS 10/1/2020 12:00:00 AM 2020-12-30T00:00 The Information Security & Assurance program encompasses a global team that is responsible for ensuring all security risks pertaining to business delivery and Client engagements are managed end to end. The team is a business facing team and engages on a frequent basis with business leaders to identify, analyze and mitigate security risks. The team is also the primary touch point between the Corporate Security Group and Business teams, while supporting the Business on Client security requirements and compliance. We are seeking an Information Security & Assurance professional, to be part of Corporate Security Group, and play an integral leadership role in the overall development and management of security and risk for the Banking, Financial Services (BFSI) line of business (LoB). Key Responsibilities * Strong knowledge of privacy laws, standards, rules and regulations * Utilize best practice standards such as ISO 27001, SOC, NIST, PCI * Ensure process adheres to legal & regulatory requirements as applicable to the scope of work. * Ensure adherence to the Client Contractual Requirements of the Process/ Function. * Ensure implementation security architecture and strategies in line with the business risk and client expectation on the engagement * Facilitate regular security assessments to identify comprehensive risks, any non-compliance or contractual breaches and encourage continuous improvements. * Align and integrate the Information Security strategy for the engagement with the business goals * Monitor and evaluate security measures to protect against reasonably anticipated threats or hazards to the privacy, security or integrity of Client sensitive information for the LoB * Establish, communicate, and maintain a charter for the security management function for the engagement and BFSI LoB * Provide consolidated security risk dashboard to the management and the business unit leaders * Lead and collaborate directly with the Client's senior management; delivery, practice development and thought leadership related to Information Security solution development, assessment and implementation * Demonstrates proven knowledge of system security, controls or information security management environment based on the risks, specifically on the following information security domains: * Security Architecture and Strategy (Integrated Risk Management) * Data Leakage Prevention; Focus on Data Flow, Encryption * Large Complex Program Execution/Implementation * Security Function Design and Governance * Incident Management * Security Infrastructure * Prepare and implement effective security and compliance training to employees to ensure that any changes in regulations are communicated in a timely manner * Develop, maintain security management plan for the engagement and provide periodic updates to the management and business leaders on the compliance. * Develop and monitor security metrics for the engagement. * Review security exceptions for the engagement and identify risks Monitor the security risk mitigation plans Cognizant Technology Solutions Teaneck NJ

Senior Associate, Information Security & Assurance-Servicenow (100% Remote)

Cognizant Technology Solutions