New 
Cyber Security Assurance
 TEKsystems | |
$80.00 - $90.00 / hr
| |
life insurance, sick time, 401(k), retirement plan
| |
 United States, D.C., Washington | |
 Apr 30, 2025 | |
|
*Top Skills' Details: *
Manager said looking for Wide range of Cyber security experience in Risk and Assurance Experience in 2-3 Domains Strong with Microsoft Azure (Bonus is Azure Perview experience) Certifications preferred Under the general supervision of an information security assurance manager, the Senior Information Risk Consultant (Cybersecurity Assurance) will provide expertise with definition, design, engineering, and validation of security configuration of technology platforms in the cloud and on-premise. The candidate will be required to work with project teams, service providers, and business units internal and external to the Fund's IT function. The candidate is expected to bring pragmatic cloud security and risk management experience allowing for the Fund to meet its present and emergent business needs. The candidate is expected to advise and influence technology and business personnel regarding the value and methods of safeguarding information, applications, systems, infrastructure, and activities to help ensure that technologies function optimally; work practices are optimized so that the information risks are managed. Specific responsibilities include: 1.Senior individual contributor to provide cybersecurity assurance expertise for a broad range of IT initiatives. This includes but is not limited to defining, guiding the engineering and validating implementation of technology agnostic security control standards, technology-specific configuration baselines and implementation guidelines for technology platforms (both cloud and on-prem) and services. 2.Maintain impartiality around IT systems to produce unbiased reports on information security risk. 3.Conducts quality assurance reviews of security requirements and audit recommendations for the implementation of identified solutions. 4.Effectively communicates requirements and educates stakeholders in IT divisions on appropriate security design and technical configuration of related controls on IT platforms throughout their lifecycle, 5.Works closely with IT project teams to develop implementation plans for new security-related products and services. 6.As an advocate of information security, works closely and proactively with IT stakeholders, service providers, and business units to provide security-related technical solutions. Identifies opportunities to improve business practices or IT security-related processes. 7.Prioritizes, monitors, and assesses compliance and audit recommendation results to ensure they are comprehensive, robust, and of high quality. 8.Other ad hoc responsibilities may include: a)Support the information security assurance manager in maintaining the Fund's ISO 27001 certification by promoting self-compliance to policies and standards by IT staff and managers. Keeps abreast of international information security codes of practice such as ISO 27001/27002, information security and privacy regulations and how these measures could affect information assets owned by, or administered on behalf of, the IMF. b)Analyzes, recommends, and implements process improvements within the context of information security. Experience should include: 1.Prior work in a technical security assurance/engineering function at organizations with security related regulatory requirements. 2.Technical security working experience with a broad range of Azure services. 3.Advanced working knowledge of: a)Azure Cloud and Microsoft 365 security controls, solutions, and future roadmaps. b)Microsoft Entra, Azure Key Vault, Microsoft Defender for Cloud/O365, Azure monitor, Azure API Management, Azure Network Security, Azure Policy, Microsoft Defender External Attack Surface Management and Azure Kubernetes Service. c)Security configuration of Microsoft Purview to ensure principle of least privileged for complex use-cases is a significant plus. 4.Demonstrated cybersecurity expertise with infrastructure, applications, and database system technologies. 5.Hands -on security configuration of platforms (cloud and non-cloud). 6.Basic IT consultancy skills. Ability to consult and deliver on the security hardening of application and infrastructure components, including tools, and techniques to ensure the security of application, database, and infrastructure components. 7.Pragmatic security expert with an inherent ability to balance security demands with business reality. Ability to quickly grasp how new technologies work and how security controls should be applied to achieve business goals. 8.Knowledge of security solutions, latest threats, and countermeasures. Certifications: (Minimum plus at least 2 preferred) *CISSP or CISM (minimum required) *CCSP (preferred) *Microsoft Certified: Cybersecurity Architect Expert (preferred) *Microsoft Certified: Azure Solutions Architect Expert (preferred) *Other Microsoft cloud security related certifications at the Expert level (preferred) *GIAC certifications (preferred) *Offensive security related certifications (preferred) *Skills* Azure, Cissp, Architecture, Cyber security, Risk management, Solution architecture *Pay and Benefits* The pay range for this position is $80.00 - $90.00/hr. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: * Medical, dental & vision * Critical Illness, Accident, and Hospital * 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available * Life Insurance (Voluntary Life & AD&D for the employee and dependents) * Short and long-term disability * Health Spending Account (HSA) * Transportation benefits * Employee Assistance Program * Time Off/Leave (PTO, Vacation or Sick Leave) *Workplace Type* This is a hybrid position in Washington,DC. *Application Deadline* This position is anticipated to close on May 7, 2025. About TEKsystems and TEKsystems Global Services We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com. The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law. | |