Sélectionner une page

Secteur bancaire

Consultant(e) indépendant(e) – conformité – secteur bancaire

Rythme : temps plein

Lieu : Paris 

Durée : 12 et 18 mois 

TJM HT : max 500

 

International Security Officer
JOB SUMMARY
International Security officer shall be, responsible for ensuring the information security compliance requirements for the assigned International Location. The purpose of the job is to ensure adequate security controls in the respective International location, meeting respective security regulatory requirements.
It includes managing compliance :
  to various information security standards;
  Standards related to Swift , Cards payment security (if applicable);
  regulatory requirements in countries the client operates;
  Other various financial standards and Security best practices.
ROLES AND RESPONSIBILITIES
 Maintain Security Policies/addendums, Standards, and Procedures pertaining to the
international location. Review and ensure the international security policies /addendums are
aligned with regulatory requirements.
 Review the information security and compliance as per regional regulatory requirements.
(ISO27001, GDPR, PCI DSS and Central bank regulations, or and any other as applicable)
 Review new regulatory security legislations, provide interpretations if necessary; monitor
action plans towards its implementation.
 Coordinate for the group for various regulatory security audits at international locations
 Review BRDs, Solution Design, Concept Design and any other requirements from regional
business units and local IT teams meets the security policies of the client.
 Perform Technology Risk Assessments, Third party Risk assessments and Review RCSA
remediation and for International Location are
 Review the PCI DSS compliance for regional locations as applicable.
 Monitor and track all international open issues with IT and concerned international SPOCS
 Assist GSO office and BU in attaining information security compliance objectives.
 Identify issues that could impact the bank and escalate any serious issues/ breaches/
violations; develop/monitor action plans for its closure in liaison with local, overseas
branches, and business groups.
 Instigate and maintain contact with local Regulatory Authorities and Regulatory compliance
department for new regulatory requirements.
 Assist Head office during Regulatory Examinations; ensure implementation/regularization of
observations linked to compliance while meeting the deadline(s).
 Respond to queries that are sought by local Regulatory Authorities / Law Enforcement
Agencies Head Office & Overseas branches, in timely manner with complete and accurate
information.
 To support the GSO – BCM team by performing Business Impact assessments, BCM planning
for Intl. location and assist in Business Continuity initiatives.
 Work for closure all open observations with Local IT/GIT and concerned SPOCS in
International Location and HO.
 Conduct the security awareness program for respective regional staff and ensure the
program is conducted
 Participate in the client CSIRT for information security incident and data breach handling.
 Coordinate with International Location Business units/Fraud Risk / GSO for digital forensic
investigation
 Review and assess the regulatory compliance circulars/notices, and security controls as

applicable.
 Work with Head Office teams to conduct the vulnerability assessment and penetration
testing and work with IT to remediate on highlighted issues.
 Review Management Dashboards/Security MIS related to Patching, VA, PT, Baselines and
end point security controls

KEY ACCOUNTABILITIES
   Security Compliance requirements at respective International location.
   Highlight security status & concerns to management.
   Consult with IT and information security staff to ensure that implementation plan is
established.
   Review and provide recommendations to IS policies, standards, guidelines/ processes
with respect to
international regulatory requirements
   Actively participate and contribute to GSO initiatives
   Track open Audit issues on information security to closure
   Risk assessments for local implementations
   Inform HO on any new 3rd party technology vendor for vendor assessment

ELIGIBLE CANDIDATE PROFILES
   Bachelor (or) Masters in Engineering/Technology (or) Master in Science graduates with
8+ years of experience in information security
   Candidate with Certifications like CISA, CRISC,CISSP will be desirable.

    Rythme : temps plein

    Lieu : Paris 

    Durée : 12 à 18 mois

    TJM HT : max 500

     

    Pour postuler : 

    Vous pouvez répondre au rapide questionnaire suivant : https://mon-consultant-indep.typeform.com/to/l0mFi34m

       

      Quel est le fonctionnement après ?

      Une fois vos éléments envoyés, nous les étudions puis les envoyons à notre client s’ils nous semblent bien en phase avec l’annonce. 

      A partir de cette étape, c’est notre client (cabinet de conseil dans la majorité des cas) qui va reprendre contact avec vous directement s’il est intéressé. Si vous n’êtes pas recontacté par notre client, cela peut être du à de multiples causes, souvent difficiles à connaître : 

      > Il n’est pas intéressé 

      > Il a trouvé un autre consultant indépendant ou une solution en interne 

      > Son client final n’est pas intéressé ou plus en recherche (autre solution trouvée)

      > Le projet a été abandonné 

      > Etc … 

      La recherche de la cause pour laquelle vous n’avez pas été recontacté n’est pas quelque chose que nous pouvons nous permettre de gérer car elle est trop chronophage et elle n’apporte pas de réelle valeur ajoutée, ni à vous ni à nous. Ainsi, nous nous excusons par avance si vous n’êtes pas recontacté(e), mais nous aurons fait en ce qui nous concerne notre part du chemin pouvant mener à un début de mission 🙂 

       

      Contactez-nous

      Que vous soyez à le recherche d'une mission, d'un consultant ou que vous souhaitiez simplement échanger, commencez par nous contacter !

      contact@mon-consultant-independant.com

      Mentions légales :  SAS ProvideUP au capital de 20 000 euros domiciliée au 20 avenue Anatole France, 94 220 Charenton-Le-Pont, contact@mon-consultant-independant.com , TVA FR46809380686, directeur de publication : Alexis Blanvillain