About
Job Description
Opportunity ID
1066
Department(s)
Consulting
Location(s)
Roseland
Job description
Technology Risk & Compliance, Senior Consultant
New York City and Metro
CohnReznick currently has an exciting career opportunity in the Advisory team. We are looking for a Senior Consultant with technology risk and compliance experience to join our team.
If you are:
* A highly dedicated professional with impressive credentials and driven by new challenges and growth opportunities
* A team player who believes in providing world-class client service and interested in becoming immersed in various industries
* Looking for a work environment that values and promotes camaraderie, collaboration and giving back to the community
Look ahead. Imagine more. And consider joining the CohnReznick team.
We offer:
* Endless opportunities to contribute to the 11th largest professional services firm in the US
* A unique culture that values collaboration in everything we do
* A team of professionals driven by a sense of excellence, integrity, commitment to lifelong learning, respect for one another, adaptability, and making a difference
* A network of 2,700 professionals committed to a diverse and inclusive workplace and giving back to the communities in which we live and work
* Varied career paths supported by strong professional development programs and resources
* A flexible work environment with competitive benefits
Role and Responsibilities:
* Adhere to the highest degree of professional standards and strict client confidentiality;
* Manage, direct, and monitor client services teams on multiple engagements;
* Plan, execute, direct and complete IT audits;
* Understand and manage firm risk on audits and proposals;
* Develop a project vision and set challenging personal and client service team goals.
Required Skills and Experience:
* Minimum of five years of overall direct technology risk experience performing hands-on information security risk assessments, vulnerability assessments through the incorporation of automated scanning and audit tools, as well as performing IT General Controls, Application Controls and security audits;
* Minimum of three years of direct Information Security experience performing hands-on information security risk assessments and vulnerability assessments such as for PCI and GLBA, HIPPA, or FFIEC compliance;
* Strong experience in staff and audit management in an integrated client service team;
* Exceptional client service and communication skills with a demonstrated ability to develop and maintain outstanding client relationships;
* Bachelor's Degree required;
* CISA or CISM or CISSP preferred;
* Proficient knowledge of Cloud Security Framework, NIST 800-53/NIST 800-37, FISMA, Certification and Accreditation (C&A), FISCAM, OMB A-123 is desirable;
* ITIL, ISO 27001/2, PCI QSA, ASV or equivalent certification a plus;
* Background and understanding of the risks and controls in technologies such as client/server, various applications of logical security, open systems architecture, data warehousing, and imaging is desirable;
* Proficient understanding of ERP systems, Operating Systems, Databases, and Network Infrastructure components is desirable.
#LI-BF1