Business Exp Plan & Admin Spec Sr. collaborating with cross - functional teams for PNC's Enterprise Technology & Security Organization. Delivering business planning processes and value - add opportunities while managing projects across physical security.
About the role
- Enterprise Security Compliance Lead managing security audits and compliance activities for a global law firm. Ensuring successful completion of vendor and client security assessments and reports across teams.
Responsibilities
- Participating in the overall process related to client security audits, vendor security audits, and other security compliance activities (e.g., ISO 27001, penetration tests, other client responses, etc.)
- Completing assigned client security reviews from intake through closure by identifying all necessary internal stakeholders based on the request (e.g., security survey, audit, review, etc.), assembling relevant and appropriate documentation, and completing the appropriate forms and questionnaires required by Latham clients
- Assisting with the vendor security audit process for assigned vendors, including collecting and reviewing submitted materials, following up on outstanding items, and drafting summary reports
- Maintaining relationships with third-party audit services that audit firm vendors, audit the firm on behalf of clients, or otherwise evaluate the firm (e.g., ISO 27001 assessors, independent consultants)
- Acting as a project manager to ensure the success of ISO 27001, client and vendor audits, and other assessments
Requirements
- A bachelor's degree or equivalent; a minimum of five (5) years of Security and Technology experience may be considered in lieu of a degree
- A bachelor’s degree in Information Systems, Computer Science, Engineering, or related field, preferably
- Recognized security certifications preferred (e.g., CISM, CISA, CRISC, CDPSE, CISSP)
- A minimum of five (5) years of experience in IT audit or IT risk management
- A minimum of three (3) years of experience in performing security assessments, IT vendor risk assessments, and vulnerability management reviews
- A minimum of two (2) years of experience applying project management concepts
Benefits
- Healthcare, life and disability insurance
- A generous 401k plan
- At least 11 paid holidays per year, and a PTO program that accrues 23 days during the first year of employment and grows with tenure
- Well-being programs (e.g. mental health services, mindfulness and resiliency, medical resources, well-being events, and more)
- Professional development programs
- Employee discounts
- Affinity groups, networks, and coalitions for lawyers and staff
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Cloud Security Engineer focused on protecting Shipt applications and guiding engineering teams in cybersecurity best practices. Designing, developing, and maintaining secure security systems in a hybrid environment.
Construction Site Superintendent overseeing construction projects for Johnson Controls, ensuring timely completion and adherence to project scope, budget, and schedule. Collaborating with teams and managing site activities in the United States.
Senior Security Architect providing security consulting and risk assessment at The Missing Link. Leading initiatives in security architecture and technology risk support within a hybrid work environment.
Apprentice Fire and Security Engineer installing, commissioning, and maintaining electronic protection systems for Johnson Controls. Collaborating in a team - based environment and gaining hands - on experience in fire and security technology.
Teaching and research role in Cybersecurity and AI at De Vinci School. Engaging in course design and research projects in a collaborative academic environment.
Data Protection Security Engineer at Fiserv designing, implementing, and maintaining cybersecurity solutions. Collaborating with teams to safeguard client information and ensure regulatory compliance.
Senior Manager IAM Metric Insights managing metrics and performance in Identity and Access Management. Delivering insights and reporting to enhance security posture for RBC's Global Security team.
HSE Technician I in TechnipFMC's HSE team promoting and supporting an HSE culture. Assisting with investigations, conducting audits, and maintaining safety documentation.
Information Security Officer creating security policies and managing security teams to protect Paytient. Collaborating with internal and external teams to ensure compliance and security posture.