CASY-MSCCN Jobs

CASY-MSCCN Logo

Job Information

Truist Cybersecurity Compliance Senior Consultant in Atlanta, Georgia

Req ID: R0062810

The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.

Need Help?

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email toAccessibilityor call 877-891-2510 (accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

Responsible for planning, initiation and execution of cyber security assessment for Truist vendors, identification and risk quantification of security gaps within vendor security environment, documentation of assessment results, and communication of gaps to related stakeholders.

The results of this assessment will be leveraged to determine the security controls posture of Truist vendors and help identify gaps within their security control environment needing remediation.

  • This is a hybrid position. Requires 50% travel.*

ESSENTIAL DUTIES AND RESPONSIBILITIES

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

  1. Conduct assessment of supplier information security environment (across various IT domains) with a risk lens; probing and asking for follow-up responses where needed.

  2. Document related results of information security assessment testing while reviewing control environment of our 3rd party suppliers.

3 .Identify gaps/risks within the suppliers' environment. Also, rational review of any mitigating/compensating controls implemented.

  1. Partner with Vendor manager’s/Program manager to ensure that overall business objectives and project plans are in alignment.

  2. Measure and monitor progress to ensure that assessment deliverables are completed timely.

  3. Provide status updates and Leadership communications.

  4. Manage multiple initiatives with sense of urgency.

  5. Clear documentation/articulation of risk identified and evaluation of impact and likelihood of the risk.

  6. May manage an on-going relationship with an assigned business unit.

  7. Applies a deep understanding of business processes and technologies used within assigned business units to ensure compliance with regulatory requirements and Truist applicable standards, policies, and procedures.

  8. Serves as a technical resource to others and reviews work performed by less experienced IT security teammates. May serve as program owner and provide maintenance of program documentation, procedures and processes to ensure compliance with changes in business or regulatory drivers.

  9. May be responsible for research, investigation, quality review, analysis, interpretation and reporting of security incidents.

Consults with managers, suppliers, and other business resources in support of security governance and incident solutions to meet business objectives and regulatory requirements.

  1. May participate in or even lead IT security development initiatives. Typically leads moderately complex projects and participates in larger, more complex initiatives. Monitor information security systems using enterprise class monitoring systems, proactively identify potential issues, and exercise appropriate responses to events

QUALIFICATIONS

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  1. Bachelor’s degree in Computer Science or related field or equivalent education, training, or experience.

  2. Minimum of 4-6 years of specifically in IT security, third party risk management, and IT security assessment.

  3. A technical understanding of applied enterprise information security technologies.

  4. Prior experience in Cyber/Information Security related risk assessments. . 5.Understanding and familiarity with cloud security and technical understanding of applied enterprise information security technologies, security frameworks (NIST, FFIEC, ISO etc.) and processes.

  5. Demonstrated knowledge of troubleshooting processes and application of system maintenance procedures.

  6. Resourcefulness in multi-tasking, anticipating needs, developing creative solutions, and researching/synthesizing information to resolve problems with moderate supervision.

  7. Proficient in Excel and PowerPoint.

  8. Excellent verbal communication, presentation, and writing skills. Experience conducting, preparing and presenting analysis, findings and recommendations.

  9. Strong business analysis and problem-solving skills. Ability to interpret and convey complex, difficult, or sensitive information.

  10. Ability to decompose problems and make decisions when problems or solutions are not 100% defined.

  11. Ability to plan and provide structure and organization in a fast paced, changing environment

Preferred Qualifications:

  1. Knowledge of financial services industry and all applicable regulations and industry standards.

  2. Technical certifications (e.g. MCSE, CCNA, Network+)

  3. Security certifications (e.g. CISSP, CCSP, CISM, CRISC, Security +)

OTHER JOB REQUIREMENTS / WORKING CONDITIONS

Sitting

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.

Availability

Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.

Travel

About 50% travel required

Truist supports a diverse workforce and is an Equal Opportunity Employer who does not discriminate against individuals on the basis of race, gender, color, religion, national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Drug Free Workplace.

EEO is the Law Pay Transparency Nondiscrimination Provision E-Verify

© 2017 SunTrust Banks, Inc. All rights reserved.

SunTrust is federally registered service marks of SunTrust Banks, Inc.

DirectEmployers