Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Cyber Security Principal (Third Party Risk Management) Remote

Remote: 
Full Remote
Contract: 
Full time
Experience: 
Senior (5-10 years)
Work from: 
New York (USA), United States

Offer summary

Qualifications:

Masters Degree Preferred, 7+ years in cybersecurity focused on governance, risk, and compliance, Knowledge of IT and business processes, Understanding of cyber risk assessment and regulatory compliance, Familiarity with NIST, PCI, ISO standards.

Key responsabilities:

  • Design security solutions for cyber threats
  • Lead Third Party Cyber Risk Management programs
  • Assess IT environments and data flow
  • Identify and evaluate technology risks
  • Consult on contract language for security requirements
Conexess Group logo
Conexess Group Information Technology & Services SME https://www.conexess.com/
51 - 200 Employees
About Conexess Group
Conexess Group is a staffing and consulting solutions provider that combines the technology you need with relationships you can trust. We understand that one size never fits all, which is why we work with our clients to develop specialized solutions that fit their organizations, coupled with responsive service that ensures we get the job done right. By getting to know our clients on a deeply personal level, we unlock the potential of our elite technical knowledge and talent network, granting access to game-changing consultants and concierge-level service. And our 80 years of combined experience enables us to attract only the best specialized talent, whom we always treat with the utmost respect and professionalism. In fact, many of our consultants have come to view Conexess as a career counselor, providing constant updates on the latest opportunities. Our culture and values reflect our innovative approach toward attracting and retaining the most talented experts and producing consistent results for our Fortune 500 and mid-cap clients. Known for our technological leadership and entrepreneurial passion, our firm has been delivering value to our clients by providing solutions to their most complex challenges. Whether you’re in need of specialized talent or a boost to your career, we look forward to working with you. Specialties: IT Staff Augmentation | ERP Consulting Solutions | Accounting & Finance Recruitment
See more Conexess Group offers

Job description

Our History:
From our start in 2009, Conexess has established itself in 3 markets, employing nearly 200+ individuals nation-wide. Operating in over 15 states, our client base ranges from Fortune 500/1000 companies to mid-small range companies. For the majority of the mid-small range companies, we are exclusively used due to our outstanding staffing track record.
 
Who We Are:
Conexess is a full-service staffing firm offering contract, contract-to hire, and direct placements. We have a wide range of recruiting capabilities extending from help desk technicians to CIOs. We are also capable of offering project-based work.
 
Conexess Group is aiding a large healthcare client in their search for a Cyber Security Principal in a remote capacity. This is a long-term opportunity with a competitive compensation package.
 
Responsibilities:
  • Plans, designs and/or recommends security solutions and capabilities that enable the organization to identify, protect, respond and recover from cyber threats and vulnerabilities in an off-shore/outsourcing environment. 
  • Drive and lead security and risk prevention solutions and programs for the Third Party Cyber Risk Management Program in partnership with key technology stakeholders from the broader cyber and technology organization.
  • Assess complex IT environments and mapping the data flow through systems/applications and organization functions
  • Identify and evaluate complex business and technology risks, internal control risk management, IT controls and related standards
  • Define, develop and implement security solutions/requirements within outsourcing program by utilizing NITS framework, etc. (off-shore/near-shore) .
  • Initiate and drive risk reduction solution/requirements through operational best practices and technology improvements in partnership with the broader cyber and technology organization.
  • Be an advocate for key business stakeholders by uncovering security risks within internal processes, technologies, and partnerships and developing a plan to manage and remediate those risks
  • Lead technical implementation requirements for our TPCRM outsourcing program, ensuring they are aligned with the broader cyber organization processes and standards
  • Hypothesize, socialize and seek feedback on security programs with various cross-functionals partners (network, endpoint, virtualized platforms, infrastructure). Establish security controls to ensure protection of off-shore systems and delivery centers.
  • Consult on outsourcing MSA and SOW contract language to ensure security, reliability, and IT requirements are aligned with security standards in partnership with business, legal, sourcing, privacy and IT stakeholders

Qualifications:
  • Masters Degree Preferred
  • 7+ years’ experience working in cybersecurity, with a focus on governance, risk, and compliance. Consideration will be given for equivalent combined experience in an IT, Risk Management or technology management capacity.
  • Working knowledge of general IT and business processes and familiarity with organizational technology landscapes.
  • Hands-on technology administration is not required, but sufficient familiarity to participate in technical discussions is critical.
  • Deep understanding of cyber risk assessment and risk management, and familiarity with cybersecurity- and privacy-related regulatory compliance requirements,  industry standards and frameworks (NIST, PCI, ISO, etc.), and key technical concepts (e.g., networking, protocols, cloud technologies).
  • Preferred: Demonstrated working knowledge of at least one of the following – SSDLC, secure architecture design, threat modelling, data privacy, AI security, cloud security.
#LI-Remote
#LI-DB1

Required profile

Experience

Level of experience: Senior (5-10 years)
Industry :
Information Technology & Services
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

Software Security ArchitectureRisk ManagementTechnical Solution DesignCloud SecurityCyber SecurityProject ManagementAI SecurityInformation PrivacySecurity EngineeringCompliance RequirementsStakeholder ManagementCyber Security AssessmentData-Flow AnalysisThreat Modeling

Other Skills

  • Governance
  • Analytical Thinking
  • Verbal Communication Skills
Are you interested?

Related jobs

See more jobs
Sign in or sign up with Google or LinkedIn