Information Security Officer

***Contract to hire***
Hybrid position in downtown NYC
Description
Our client is building out their GRC team due to a merger and hiring a Information Security Officer. They will be part of the Information Security and Risk Management (ISRM) team and is responsible to identify, track, and report on remediation of risks and audit findings identified by internal and external risk assessors. This role will also include an expansion of risk management capabilities for the ServiceNow GRC toolset.
Top Skills' Details
1) 5+ years - Performing Risk assessments and analyzing the risk. Identify, track, and report on remediation of risks and audit findings identified by internal and external risk assessors.
2) 5+ years - GRC applications or more specific with ServiceNow GRC
3) A minimum of ten years of IT experience, with at least 7 years dedicated to IT/Cyber Security, including Solution Design and risk management
General tasks and responsibilities will include:
Support the ISRM team in the development and execution of risk analysis and risk mitigation strategies
As a Subject Matter Expert, co-develop and maintain System's Information Security Standards, Standard Operating Procedures, and other related security governance documents that serve to support the System's Information Security Risk Management capabilities.
Conduct and participate in any relevant audits and risk assessment activities.
Track and follow-up on risk and risk remediation tickets to ensure compliance with approved policy and procedures.
Provide end-user support for risk treatment workflows in the ServiceNow GRC application.
Respond to requests for risk and risk treatment status from regulating bodies or internal/external assessor organizations.
Develop effective working relationships with corporate and enterprise peers and teams within areas such as Compliance, IT Site Directors, and facility administrative and clinical leadership.
Develop effective working relationships with business and technical teams covering business applications, clinical applications, and biomedical devices as well as other supporting enterprise infrastructure and related teams.
Develop, maintain, and track progress on security risk and similar remediation activities across Enterprise, Application, and Facilities scopes.
Assist with development and documentation of key security controls at the Enterprise, Facility, and Application scopes.
Additional Skills & Qualifications
Knowledgeable In:
Strong Knowledge of infrastructure, GRC applications and security protocols in addition to configuration management techniques and risk management/compliance/audit standards
Deep knowledge of HIPAA/HITECH, NIST CSF, ISO27001/27002 and PCI-DSS Standards and Requirements
Knowledge of encryption algorithms
Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins
Knowledge of network security architecture concepts, including topology, protocols, components, principles (e.g. application of defense-in-depth), and traffic flows across the network (e.g. TCP & TCP/IP, OSI, etc.)
Experience working with network access, identity, and access management (e.g. Active Directory, access federation, multifactor authentication, PKI)
Experience working with operating systems (Microsoft Windows, Linux, UNIX, MacOS X)
Knowledge of security management and secure configuration management techniques
Knowledge of software engineering
Skill in assessing the robustness of security systems and designs and determining how it should work (including its resilience and dependability capabilities)
Knowledge of IT supply chain security/risk management policies, requirements, and procedures
Other Preferred Skills:
Must possess a high degree of integrity and trust along with the ability to work independently
Participate in special projects as needed and perform other duties as assigned
Must be able to work independently as well as work as part of a fast-moving team
Must be able to work at various locations when necessary along with working various shifts
Educational Level:
A bachelor's degree in information systems
CISSP, CISM, GSEC, CEH, or other relevant security qualification
Job Type & Location
This is a Contract to Hire position based out of New York, NY.
Pay and Benefits
The pay range for this position is $80.00 - $90.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in New York,NY.
Application Deadline
This position is anticipated to close on Feb 13, 2026.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.