Cyber Security Controls Assessor

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - 12 Month(s)

Skills

Analytical Skill
Attention To Detail
Auditing
Business Process
CISA

Job Details

We are looking for Cyber Security Controls Assessor for our client in Oakland, CA
Job Title: Cyber Security Controls Assessor
Job Location: Oakland, CA
Job Type: Contract
Job Description:
Pay Range: $64hr - $67hr
  • The IT Compliance Analyst will perform assessments across multiple IT platforms, including applications, databases, operating systems, middleware, monitoring tools, and business processes.
  • The role involves evaluating controls, identifying risks, supporting remediation efforts, and ensuring compliance with regulatory standards and industry best practices.
Responsibilities:
  • Perform multi-platform assessments based on predefined test objectives and plans.
  • Retest controls that have been remediated or updated following previously identified deficiencies.
  • Obtain, review, and interpret evidence to validate that controls are performed effectively.
  • Execute and report on IT Compliance assessment results in accordance with standards such as NIST SP800-53, SP800-115, SOX, and NERC CIP.
  • Review organizational IT policies, standards, and procedures to identify control points that mitigate business risk.
  • Analyze test results to identify vulnerabilities, gaps, or control deficiencies. Work with stakeholders to establish sustainable remediation plans.
  • Identify risks associated with control failures and support the identification of mitigating controls.
  • Partner with control owners to ensure control documentation is periodically updated to reflect the current control environment.
  • Perform additional tasks as necessary to ensure compliance commitments are met.
  • Support the Compliance Sr. Manager/Manager as required.
Education And Experience:
  • Bachelor s degree in Computer Science, Business, or equivalent experience.
  • Minimum of 3 years of general IT experience, including IT security or IT risk management experience.
  • Experience using Excel, including worksheets, workbooks, and formulas.
  • Experience managing multiple projects with conflicting priorities.
Requirement/Must Have:
  • At least one current and valid certification from: CCNA, CISA, CRISC, CIA, or CISSP.
  • Strong oral and written communication skills.
  • Strong analytical skills.
  • Understanding of application, database, network, and systems security.
  • Knowledge of general computing controls (GCCs).
  • Ability to identify complex control gaps.
  • Knowledge of auditing standards and frameworks (e.g., COBIT) and IT service management best practices (e.g., ITIL).
  • Understanding of regulatory standards, such as Sarbanes Oxley Act and NERC/CIP.
  • Excellent planning, organizational, and project management skills.
  • Ability to multi-task projects or assessments.
  • Ability to work independently in a fast-paced environment.
  • Detail-oriented.
Desired Skills/Certifications:
  • Utility industry experience.
  • Big 4 audit experience.
  • Certifications such as CEH, ITIL, MCP/MCSE, CCNP, CISM, or PMP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.