Skills

Communication Organizational Skills

Job Specifications

Performing risk calculators to identify high risk applications/projects; for those identified, performing application security questionnaires/assessments, identifying security gaps and appropriate remediation actions

· Performing Incident trending to ensure security root causes are identified and remediated

· Evaluating static & dynamic vulnerabilities to identify TLM/ALM & other security issues along with the appropriate remediation actions.

· Large experience in SOX, IAPP, GxP, Privacy compliance requirements

· Provide local oversite for interns, employees / Contractors in the team

· Support Key Advanced Therapies projects:

· Providing a central point for SC security questions or queries on project support, connecting with the appropriate ISRM team member to ensure complete and accurate responses and/or appropriate involvement

· Navigating between all ISRM SC pillars to obtain knowledge regarding security issues

· Ensures appropriate controls are implemented for Car-t Applications and coordinates alignment with Internal Audit and IT Compliance

· Provide metrics and reports on a weekly basis tracking the entire portfolio, application assessment status, and Risk Acceptance status.

What you need to have to be considered

· Bachelor’s degree in information technology, Computer Science, or a related field

· Minimum 7 years of experience working with security and controls, consulting stakeholders throughout the application implementation process

· Broad knowledge of information security processes and principles is useful in explaining the business value of cybersecurity.

· Experienced in identifying and articulating issues/obstacles regarding application security issues

· Working knowledge of Web/Cloud-based software

· Familiarity with SOX compliance requirements

· Self-starter and proficient multitasker with excellent documentation, communication, and organizational skills Preferred Knowledge, Skills and Abilities

· Certified Information Systems Security Professional (CISSP), CISM, CISA etc..

About the Company

Vy Systems is a part of vy.ventures and is in the business of Technology consulting, Solutions, and Managed Services, providing invaluable services across many countries since 2002. We have formulated company policies and protocols based on our distinctive DNA that has evolved over two decades and strikes a good balance between IQ and EQ. Our DNA incorporates/encompasses emotional components, Key analytical talents, intellectual abilities, plain old common sense, and presence of mind to solve issues and make important busin... Know more