2 of 2 Remote Risk Assessment Jobs in Guildford

of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters within the security and compliance domain such that the company remains secure against the … outcomes. Expert in information security with strong communication and stakeholder management skills. Experience in managing security incidents and leading incident response. Experience with security assessment tools and vulnerability management. Strong vendor management and third-party risk assessment experience. Skills: Strong understanding of cloud security principles and best More ❯

testing of controls, and supporting evidence to meet SOC 2 Trust Service Criteria. Understand technology controls that impact on-premises and cloud technology, operational risk to the Deloitte Technology organization as well as related laws, regulations, and industry standards, specifically related to internal and cloud technology solutions. Assess technology … track remediation activities to meet target dates for closure, and track/report progress. Work with the appropriate Information Security, Office of General Counsel, Risk Management, and leadership to determine scope of SOC 2 audits. Develop and recommend appropriate information security policies, standards, procedures, checklists, and guidelines using generally … professional experience and/or qualifications. Proven directly related experience in the following: managing information technology audits, assessments, remediation management, creating, leading, and managing risk assessment programs. Experience with SSAE 18 SOC 2 and various other industry standard frameworks such as: NIST, HITRUST, CSA, CCM. Experience leading IT More ❯