ProViso Consulting
Summary of day-to-day responsibilities:
• Provide leadership for the provision of technical expertise in development and support of activities, processes, procedures, and tools for protecting information security with a focus on application security Research, design and implement application security solutions and practices.
• Direct testing of security plans. Lead the evaluation of new and proposed security systems and technologies.
Must have:
• Control testing experience.
• Effectiveness control testing experience.
• JIRA, ServiceNow, Agile methodology
• Info Sec Analyst experience
• Experience in managing and executing fieldwork, issue writing and reporting
• Experience working in regulated environments
• In-depth knowledge of security frameworks, standards, and best practices.
• Experience documenting testing reports, Executive reports
Nice To Have:
• Audit Experience of Network Security devices like Firewalls, Routers.
• Audit Experience of Mainframes and Cloud technologies.
• Experience with IT audits, control testing, including developing detailed test procedures to provide assurance on control objectives.
• Industry certifications: CISSP (or equivalent) and CISA preferred (*CISSP for broad domain knowledge 5+ YoE, CISA for audits)