Request Technology, LLC
Lead, Security Assurance
Location: Chicago, IL or Coppell, TX
Hybrid: 3 days onsite, 2 days remote
Salary: Open + Bonus
*We are unable to provide sponsorship for this role*
Qualifications
5+ years’ hands-on Information Security experience, preferably within previous work in Compliance, Audit, Risk Management, or Security.
Advanced understanding of information related frameworks and standards such as COBIT, NIST 800-53, NIST CSF, ISO etc.
Experience in security risk management principles and practices.
Experience in working with regulatory frameworks and requirements such as, Reg SCI, CFTC 99.18, etc.
Experience working in ServiceNow, Tableau, Archer GRC, Jira, and Confluence
Responsibilities
Scoping, planning, conducting, and reporting Security assessments for internal departments
Collaborate with the Security Engineering & Technology Integration and Threat Intelligence teams to assess risk and set security requirements for new technology onboarding and PoCs
Assist with oversight of the Security Observation Risk Tracking process which includes processing security observations nominated from various sources, assessing risk ratings for observations, communicating observations to risk owners, and managing the observation lifecycle
Collaborate with Threat Intelligence to determine MITRE ATT&CK tagging for observations within the Security Observation Risk Tracking process
Participate in Security review and approval of Linux server privilege elevation, proxy exception, and firewall exception requests
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team
Research and recommend new or updated risk assessment methodologies, frameworks, and standards
Assist with other Security Assurance Program efforts including but not limited to tracking of remediation and validation of audit, compliance, and regulatory findings as needed.
Collaborate with automation and AI teams to assess opportunities for incorporating AI into team processes
Documenting process flow enhancements and working with Security Business Operations to develop and enhance Security Assurance processes.
Assist Security Analysts, transferring technical and risk management knowledge
Partnering with IT department to disseminate, train, and provide guidance against the Security requirements
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Information Technology & Services
Financial Services
Note: This description retains the essential job information and requirements while removing extraneous postings and non-relevant content. EEO statements and sponsorship note are preserved as provided.
#J-18808-Ljbffr
Hybrid: 3 days onsite, 2 days remote
Salary: Open + Bonus
*We are unable to provide sponsorship for this role*
Qualifications
5+ years’ hands-on Information Security experience, preferably within previous work in Compliance, Audit, Risk Management, or Security.
Advanced understanding of information related frameworks and standards such as COBIT, NIST 800-53, NIST CSF, ISO etc.
Experience in security risk management principles and practices.
Experience in working with regulatory frameworks and requirements such as, Reg SCI, CFTC 99.18, etc.
Experience working in ServiceNow, Tableau, Archer GRC, Jira, and Confluence
Responsibilities
Scoping, planning, conducting, and reporting Security assessments for internal departments
Collaborate with the Security Engineering & Technology Integration and Threat Intelligence teams to assess risk and set security requirements for new technology onboarding and PoCs
Assist with oversight of the Security Observation Risk Tracking process which includes processing security observations nominated from various sources, assessing risk ratings for observations, communicating observations to risk owners, and managing the observation lifecycle
Collaborate with Threat Intelligence to determine MITRE ATT&CK tagging for observations within the Security Observation Risk Tracking process
Participate in Security review and approval of Linux server privilege elevation, proxy exception, and firewall exception requests
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team
Research and recommend new or updated risk assessment methodologies, frameworks, and standards
Assist with other Security Assurance Program efforts including but not limited to tracking of remediation and validation of audit, compliance, and regulatory findings as needed.
Collaborate with automation and AI teams to assess opportunities for incorporating AI into team processes
Documenting process flow enhancements and working with Security Business Operations to develop and enhance Security Assurance processes.
Assist Security Analysts, transferring technical and risk management knowledge
Partnering with IT department to disseminate, train, and provide guidance against the Security requirements
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Information Technology & Services
Financial Services
Note: This description retains the essential job information and requirements while removing extraneous postings and non-relevant content. EEO statements and sponsorship note are preserved as provided.
#J-18808-Ljbffr