Senior InfoSec Compliance Specialist
Chicago, IL

Job Description

Our professionals balance analytical skills, deep market insight and independence to deliver solid, defensible analysis and practical advice to our clients. As an organization, we think globally. We create transparency in an opaque world, and we encourage our people to do the same. That means when you take your place on our team, you'll discover a supportive and collaborative work environment that empowers you to excel. If you're ready to share your perspective with the world, then you can make a real impact here. This is the Duff & Phelps difference.

Our Technology practice is looking for a Senior Info sec Compliance Specialist.

At Duff & Phelps, your work will help protect, restore and maximize value for our clients. Join us and together we'll maximize the value of your career.

RESPONSIBILITIES:

* Conduct security due diligence assessments at the request of the business to verify a vendor's information security capabilities by providing security risk assessment questionnaires and creating final assessment reports


* Negotiate with vendors to obtain remediation plans for issues identified


* Complete client security questionnaires, answer follow-up questions and participate in client audits at the request of the business


* Partner with business and other stake holders to ensure risks are clearly articulated in a manner that is understood by business and technology audiences


* Work with the business to track the remediation to close out any vulnerabilities identified by clients


* Review contracts and master service agreements as requested to ensure appropriate security language is present


* Provide support in the development, implementation and maintenance of the Information Security program


* Assist in the administration of an Information Security Awareness Program (new hire and annual training courses, phishing exercises, employee communications)


* Perform general administrative duties as necessary to support Information Security operations


* Partner with Information Security team resources as needed to assist the business in the development, maintenance, testing of their Business Impact Analysis (BIA)/Business Continuity Plans (BCP)



REQUIREMENTS:

* Minimum 3-5 years of experience in Information Security related positions


* Bachelor's degree in a related field from an accredited college or university


* CISSP certification preferred but not required


* Good English written and verbal communication skills


* Thorough understanding of, and experience with, Information Security program development, maintenance and governance


* Strong research skills


* Ability to plan and execute with minimal oversight


* Ability to multi-task and prioritize tasks across a range of projects, adjusting to shifting priorities


* Excellent time management and organization skills


* Strong personal integrity


* Demonstrate commitment to obtaining outstanding results



In order to be considered for a position at Duff & Phelps, you must formally apply via careers.duffandphelps.jobs

Duff & Phelps is committed to providing equal opportunities in employment. We will not discriminate between applications for reason of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.

'57143