DevSecOps engineer at Ford ensuring secure software development and compliance with security standards. Collaborating with teams to embed security practices and assess vulnerabilities in software delivery.
About the role
- Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Responsibilities
- Support periodic testing of key and non-key controls in accordance with Control Testing Methodology.
- Assess control design and operating effectiveness against internal policies, standards, regulatory requirements, and customer obligations.
- Timely collection of control testing evidence from relevant Control Owners to support scheduled testing activities.
- Prepare clear and accurate test documentation, including test procedures, execution results, and supporting evidence.
- Identify and document control deficiencies, ensuring timely escalation to the Manager and supporting remediation follow-up activities.
- Work closely with 1st Line teams to obtain evidence, clarify control processes, and support accurate testing outcomes.
- Liaise with 2nd Line Security partners and Internal Audit, ensuring transparency and alignment with control testing activities.
- Adhere to established control testing standards, procedures, and documentation requirements.
Requirements
- Experience in control testing, or assurance, and risk management within security in a regulated environment.
- Good investigative and analytical experience (e.g. enquiry, scanning, analysis, interviewing, testing), problem-solving, and decision-making skills.
- Good understanding of control frameworks and standards (e.g., NIST, CRI, ISO and PCI-DSS).
- Ability to assess control design and operating effectiveness in complex environments and to identify control gaps and improvement opportunities.
- Professional certifications such as CISA, CRISC, ISO 27001 or equivalent is desirable.
- Bachelor’s degree in Information Technology, Computer Science, Cyber Security, or related field.
- Good Knowledge of security controls and IT general controls across platforms such as UNIX, HP Nonstop, and Windows.
- Proficiency in Microsoft Office Suite (MS Word, MS Excel, MS Access and MS PowerPoint)
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
- Corporate Security Responsibility
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Officer responsible for ensuring safety and security at the Genesee Brewing Company. Monitoring premises, responding to emergencies, and providing visitor assistance during shifts.
Security Estimator creating estimates and proposals for security projects at LINX. Collaborating with engineering and sales teams for system design and client relationships.
Product Security Architect at Expedia designing secure architecture for services and APIs. Collaborating with teams to guide secure practices and integrate AI - driven solutions.
IT Security Officer overseeing information security for a specific IT sector at Desjardins. Collaborating with cross - sector teams and managing information security risks and vulnerabilities.
Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.
Security Data Specialist supporting a large - scale cybersecurity assessment program for State government agencies. Transforming assessment data into actionable insights and enabling data - driven decision - making across stakeholders.