Position Details
Security Engineer Admin Apply
Job role: Security Engineer/Admin
Duration: 6 month Contract to hire
Location: Chesterbrook, PA 3 days onsite/week
Summary:
This role is responsible for analyzing the industry landscape, understanding Client capabilities (internal and through key partners), identifying enhancement opportunities, and monitoring implementation of security programs. The analyst will evaluate new and existing suppliers against Client Confidentiality, Integrity, and Availability requirements and lead change efforts where needed.
Location: Chesterbrook, PA 3 days onsite/week
Summary:
This role is responsible for analyzing the industry landscape, understanding Client capabilities (internal and through key partners), identifying enhancement opportunities, and monitoring implementation of security programs. The analyst will evaluate new and existing suppliers against Client Confidentiality, Integrity, and Availability requirements and lead change efforts where needed.
Key Responsibilities:
Governance & SOC Oversight
Act as the primary liaison with the SOC Offshore team, ensuring compliance with client security policies and standards.
Monitor service delivery against SLAs and KPIs; identify gaps and escalate issues when expectations are not met.
Proactively communicate deficiencies and collaborate on remediation plans to maintain operational integrity.
Drive governance practices to ensure offshore operations align with security, compliance, and performance requirements.
Act as the primary liaison with the SOC Offshore team, ensuring compliance with client security policies and standards.
Monitor service delivery against SLAs and KPIs; identify gaps and escalate issues when expectations are not met.
Proactively communicate deficiencies and collaborate on remediation plans to maintain operational integrity.
Drive governance practices to ensure offshore operations align with security, compliance, and performance requirements.
Vendor & Risk Management
Partner with business units on all vendor projects to ensure security standards are upheld and service level agreements are established.
Evaluate suppliers for compliance with confidentiality, integrity, and availability requirements.
Collaborate with Risk and Vendor Management teams to address gaps and implement corrective actions.
Partner with business units on all vendor projects to ensure security standards are upheld and service level agreements are established.
Evaluate suppliers for compliance with confidentiality, integrity, and availability requirements.
Collaborate with Risk and Vendor Management teams to address gaps and implement corrective actions.
Security Advisory & Analysis
Serve as an information security subject matter expert, providing advisory and consulting services.
Analyze security gaps in emerging technologies and frameworks; incorporate remediation practices to reduce risk.
Communicate risk assessment findings, security concerns, and control gaps to business and IT partners in clear, actionable terms.
Serve as an information security subject matter expert, providing advisory and consulting services.
Analyze security gaps in emerging technologies and frameworks; incorporate remediation practices to reduce risk.
Communicate risk assessment findings, security concerns, and control gaps to business and IT partners in clear, actionable terms.
Policy & Compliance
Develop, communicate, and maintain organizational information security policies.
Ensure assessments and vulnerability scans are conducted per Security Assessment Policy; track and close findings in line with guidelines.
Maintain IT contingency plans based on system criticality.
Develop, communicate, and maintain organizational information security policies.
Ensure assessments and vulnerability scans are conducted per Security Assessment Policy; track and close findings in line with guidelines.
Maintain IT contingency plans based on system criticality.
Reporting & Governance
Prepare organizational vulnerability and security governance reports, including materials for the Board of Trustees.
Provide exceptional support to assigned lines of business as a security advocate.
Prepare organizational vulnerability and security governance reports, including materials for the Board of Trustees.
Provide exceptional support to assigned lines of business as a security advocate.
Other Duties
Participate in special projects and perform other duties as assigned.
Qualifications:
Undergraduate degree in Computer Science or related field, or equivalent experience.
Minimum of 5 years of experience in information security, governance, or vendor management.
Strong analytical, problem-solving, and communication skills.
Demonstrated ability to manage offshore vendor relationships and enforce compliance.
Knowledge of security concepts, theories, and practices.
CISSP Certification
Ability to work independently, exercise good judgment, and manage multiple priorities.
Participate in special projects and perform other duties as assigned.
Qualifications:
Undergraduate degree in Computer Science or related field, or equivalent experience.
Minimum of 5 years of experience in information security, governance, or vendor management.
Strong analytical, problem-solving, and communication skills.
Demonstrated ability to manage offshore vendor relationships and enforce compliance.
Knowledge of security concepts, theories, and practices.
CISSP Certification
Ability to work independently, exercise good judgment, and manage multiple priorities.
