Insurance Security and Risk Expert Consultant

at  Cognizant

JOB DESCRIPTION

Cognizant (Nasdaq-100: CTSH) is one of the world’s leading professional services companies, transforming clients’ business, operating and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build and run more innovative and efficient businesses.Learn how Cognizant helps clients lead with digital at www.cognizant.com or follow us @Cognizant

POSITION SUMMARY:

• Reporting to the Local Information Security Team Lead (LISO), we have an incredible opportunity for an Information Security and Risk Expert Consultant to join our team.
• This role will see you support activities in the context of the related Information Security Management System (ISMS), risk identification and assessment and advice to the various stakeholders in the local branch.
• This applies to all Information Security Risk areas of the services provided to the internal customers, including those provided by 3rd parties and/ or outsourcing providers. You will actively contribute to the assurance capabilities during an ongoing global IT transformation program.

MANDATORY SKILLS:

• Demonstrated experience in Information Security related fields and/ or risk management.
• Sound knowledge of IT security technology, architecture and processes and profound knowledge of information security management systems and relevant industry standards (in particular ISO270xx, COBIT5/2019)
• Experience in supporting projects in complex enterprise environments.
• Professional experience with supplier management (including Cloud providers), IT outsourcing and relevant control frameworks.
• Ability to cope with high workload, and being able to exercise good levels of independence, judgment, and initiative.
• Good communication skills and stakeholder engagements.

• Support the delivery of information security-related activities in the local entity as well as in the service provisioning, including interfaces to businesses, partners, customers and other safeguarding functions.
• Support the promotion of knowledge and awareness of client’s technology security requirements and processes.
• Provide information security consulting and liaison with all relevant stakeholders.
• Support the effective implementation of Information Security principles and procedures during the full-service life cycle of services offered by the client, including those provided by external parties (e.g., Cloud providers) and outsourcing partners.
• Systematically assess the effectiveness of security controls in all services provided by client, its partners and 3rd party providers
• Support the implementation of and compliance with Group-wide standards, regulatory requirements and industry security standards in all client services and projects.
• Support in assessing the contractual security provisions in the context of 3rd party management.
• Support the Security Risk Management process, including supporting the life cycle of security risk assessments, assessing, and addressing deviations from security policies and contractual security provisions, as well as providing recommendations of effective methodologies to mitigate identified information security risks.
• Support on the annual compliance reporting process for the local entity as required.
  Salary Range : >$100,000