360 IT Professionals is a Software Development Company based in Fremont, California that offers complete technology services in Mobile development, Web development, Cloud computing and IT staffing. Merging Information Technology skills in all its services and operations, the company caters to its globally positioned clients by providing dynamic feasible IT solutions.
We are looking for an Information Security Specialist to support compliance and risk management activities during a 6-month engagement. The candidate will assess Bell's suppliers, working closely with business units and security teams to identify, communicate, and develop remediation for supplier security risks. The candidate will also develop progress and risk reports to be presented to involved stakeholders.
Responsibilities:
Conducting Security Assessments for the determination of information security risks and required mitigation activities.
Participation in the negotiation of contracts with suppliers to ensure the inclusion of specific security requirements.
Experience communicating and working with both technical and non-technical contacts.
Understanding of ISO 27001/27002, or other similar security frameworks such as ITIL, ISO, CoBiT, NIST, TOGAF.
Success in the role will be defined by the candidate's ability to:
Prioritize and work under pressure; strong analytical/problem-solving skills with attention to detail, and good business judgment.
Develop and track project plans, and identify and address potential roadblocks or other project risks.
Understand risk modeling and be able to convert that into a risk assessment process.
Communicate effectively both verbally and in written reports, to all levels of the organization.
Motivate business users and technical teams to take action on security issues.
Understand and be able to communicate the potential impact of specific vulnerabilities on specific systems based on the system architecture, compensating controls, and purpose of the system.
Bilingualism is a significant asset (English and French). Certifications related to security (CISSP, GSLC, etc.) are also an asset.
#J-18808-Ljbffr