Information Security Consultant

Role: Principal Information Security

Location: Merrifield, VA (Hybrid)

6++ Months Long Term Contract

Description:

Qualifications and Education Requirements:

• Bachelor's degree in Information Systems, Computer Science, Engineering, Business, Mathematics, Economics, or related field, or the equivalent combination of education, training and experience.
• A minimum of 12-15 years of experience leading risk and/or compliance related activities in financial services or other relevant industry, especially Operational Risk Programs.
• Deep knowledge and practical experience implementing NIST CSF in a medium to large financial institution.

• Extensive knowledge of industry leading risk management frameworks such as COSO, COBIT, NIST CSF, ITIL).
• Working knowledge of the MITRE attack framework.
• Extensive experience in the development of risk management frameworks along with the requisite implementation.
• Advanced knowledge of information technology systems, project processes, and application development.
• Advanced organizational, planning and time management skills.
• Advanced research, analytical, and problem-solving skills.
• Advanced skill developing and implementing programs in a leadership role.
• Advanced skill building effective relationships with all levels of staff, management, stakeholders, and vendors, through rapport, trust, diplomacy and tact.
• Advanced verbal, written, interpersonal, and presentation skills to communicate clearly and concisely technical and non-technical information to all levels of management and a strong EQ.
• Effective skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes.
• Advanced skill exercising initiative and using good judgment to make sound decisions.

Desired Qualifications and Education Requirements:

• Prior experience developing, implementing, and or assessing an information security program for a medium to large financial institution.
• Prior experience implementing and/or assessing NIST Cybersecurity Framework (CSF) in a medium to large financial institution.
• Graduate education in Business, Cyber/Information Security Risk, Information Systems, Computer Science, Engineering, Quantitative discipline or related field.
• Professional certifications including, but not limited to any of the following: FRM, PRM, CISA, CISM, CISSP, CGEIT, CRISC, CFE, CPA, CIA, CIPP, ISA, AWS etc.
• Professional or planned date for certification in Operational Risk, and/or specialized in Technology or Information Security.
• Knowledge of Client s instructions, standards, and procedures.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Role: Principal Information Security

Location: Merrifield, VA (Hybrid)

6++ Months Long Term Contract

Description:

Qualifications and Education Requirements:

• Bachelor's degree in Information Systems, Computer Science, Engineering, Business, Mathematics, Economics, or related field, or the equivalent combination of education, training and experience.
• A minimum of 12-15 years of experience leading risk and/or compliance related activities in financial services or other relevant industry, especially Operational Risk Programs.
• Deep knowledge and practical experience implementing NIST CSF in a medium to large financial institution.

• Extensive knowledge of industry leading risk management frameworks such as COSO, COBIT, NIST CSF, ITIL).
• Working knowledge of the MITRE attack framework.
• Extensive experience in the development of risk management frameworks along with the requisite implementation.
• Advanced knowledge of information technology systems, project processes, and application development.
• Advanced organizational, planning and time management skills.
• Advanced research, analytical, and problem-solving skills.
• Advanced skill developing and implementing programs in a leadership role.
• Advanced skill building effective relationships with all levels of staff, management, stakeholders, and vendors, through rapport, trust, diplomacy and tact.
• Advanced verbal, written, interpersonal, and presentation skills to communicate clearly and concisely technical and non-technical information to all levels of management and a strong EQ.
• Effective skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes.
• Advanced skill exercising initiative and using good judgment to make sound decisions.

Desired Qualifications and Education Requirements:

• Prior experience developing, implementing, and or assessing an information security program for a medium to large financial institution.
• Prior experience implementing and/or assessing NIST Cybersecurity Framework (CSF) in a medium to large financial institution.
• Graduate education in Business, Cyber/Information Security Risk, Information Systems, Computer Science, Engineering, Quantitative discipline or related field.
• Professional certifications including, but not limited to any of the following: FRM, PRM, CISA, CISM, CISSP, CGEIT, CRISC, CFE, CPA, CIA, CIPP, ISA, AWS etc.
• Professional or planned date for certification in Operational Risk, and/or specialized in Technology or Information Security.
• Knowledge of Client s instructions, standards, and procedures.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.