Senior Specialist - CyberSecurity
LTM, New York, NY, United States
Responsibilities
Liaise with business teams to ensure a comprehensive understanding of business processes and the mapped IT controls and testing procedures.
Define PCI DSS / ISO 27001 control assessment including test plans, ensure that the test was performed correctly, and ensure the assessment is closed within the required timeframe.
Conduct detailed document analysis of policies, procedures, and standards, identify gaps, and highlight remediation measures if any.
Ensure Compliance SLA adherence, provide timely audit support, and manage external audits.
Maintain a customer delivery mindset and exhibit strong project management skills.
Act as a trusted advisor to the client and drive the IT risk compliance office to manage the entire audit compliance risk management program.
Stakeholder management: communicate IT GRC issues and explain them in business language to key members of the GRC program at the client.
Conduct workshop sessions with the business and control owners, provide walkthroughs of management communication, and participate in all GRC-related meetings and status reporting.
Skills and Expertise
10+ years of experience in IT GRC with a strong understanding of regulations and standards including PCI DSS, SOX, NIST 800-53, SOC 2, ISO 27001, and GDPR.
Exposure to IT GRC tools such as ServiceNow, OneTrust, Archer, ServiceNow Risk Recon, Microsoft eDiscovery, and others.
Expertise in security principles, maturity assessment, controls testing (test of design and test of effectiveness), privacy regulations (GDPR, PII, etc.), and policy, procedure, and standard development.
Expertise in security risk compliance audit management.
Technology Stacks
Power BI
Microsoft Excel
Microsoft PowerPoint
Education
University degree (Bachelor's) or equivalent experience in computer science, information systems, mathematics, statistics, or a related field.
Certifications
One of the following security certifications: ISO 27001, CISA, CISM, CEH, CISSP, CRISC, CGEIT, CISSP, CCSK.
Benefits and Perks
Comprehensive Medical Plan covering Medical, Dental, Vision
Short‑Term and Long‑Term Disability Coverage
401(k) Plan with Company match
Life Insurance
Vacation Time, Sick Leave, Paid Holidays
Paid Paternity and Maternity Leave
The range displayed on each job posting reflects the minimum and maximum salary target for the position across all US locations. Within the range, individual pay is determined by work location, job level, and additional factors including job‑related skills, experience, and relevant education or training. Depending on the position offered, other forms of compensation may be provided as part of overall compensation, such as an annual performance‑based bonus, sales incentive pay, and other forms of bonus or variable compensation.
Disclaimer: The compensation and benefits information provided herein is accurate as of the date of this posting.
LTIMindtree is an equal‑opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, color, creed, religion, sex (including pregnancy, childbirth, or related medical conditions), gender identity or expression, national origin, ancestry, age, family‑care status, veteran status, marital status, civil union status, domestic‑partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectionate or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law.
#J-18808-Ljbffr
Liaise with business teams to ensure a comprehensive understanding of business processes and the mapped IT controls and testing procedures.
Define PCI DSS / ISO 27001 control assessment including test plans, ensure that the test was performed correctly, and ensure the assessment is closed within the required timeframe.
Conduct detailed document analysis of policies, procedures, and standards, identify gaps, and highlight remediation measures if any.
Ensure Compliance SLA adherence, provide timely audit support, and manage external audits.
Maintain a customer delivery mindset and exhibit strong project management skills.
Act as a trusted advisor to the client and drive the IT risk compliance office to manage the entire audit compliance risk management program.
Stakeholder management: communicate IT GRC issues and explain them in business language to key members of the GRC program at the client.
Conduct workshop sessions with the business and control owners, provide walkthroughs of management communication, and participate in all GRC-related meetings and status reporting.
Skills and Expertise
10+ years of experience in IT GRC with a strong understanding of regulations and standards including PCI DSS, SOX, NIST 800-53, SOC 2, ISO 27001, and GDPR.
Exposure to IT GRC tools such as ServiceNow, OneTrust, Archer, ServiceNow Risk Recon, Microsoft eDiscovery, and others.
Expertise in security principles, maturity assessment, controls testing (test of design and test of effectiveness), privacy regulations (GDPR, PII, etc.), and policy, procedure, and standard development.
Expertise in security risk compliance audit management.
Technology Stacks
Power BI
Microsoft Excel
Microsoft PowerPoint
Education
University degree (Bachelor's) or equivalent experience in computer science, information systems, mathematics, statistics, or a related field.
Certifications
One of the following security certifications: ISO 27001, CISA, CISM, CEH, CISSP, CRISC, CGEIT, CISSP, CCSK.
Benefits and Perks
Comprehensive Medical Plan covering Medical, Dental, Vision
Short‑Term and Long‑Term Disability Coverage
401(k) Plan with Company match
Life Insurance
Vacation Time, Sick Leave, Paid Holidays
Paid Paternity and Maternity Leave
The range displayed on each job posting reflects the minimum and maximum salary target for the position across all US locations. Within the range, individual pay is determined by work location, job level, and additional factors including job‑related skills, experience, and relevant education or training. Depending on the position offered, other forms of compensation may be provided as part of overall compensation, such as an annual performance‑based bonus, sales incentive pay, and other forms of bonus or variable compensation.
Disclaimer: The compensation and benefits information provided herein is accurate as of the date of this posting.
LTIMindtree is an equal‑opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, color, creed, religion, sex (including pregnancy, childbirth, or related medical conditions), gender identity or expression, national origin, ancestry, age, family‑care status, veteran status, marital status, civil union status, domestic‑partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectionate or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law.
#J-18808-Ljbffr