1-2 year assignment minimum full weeks
- 3 Certs required LIKE CISSP, CRISC, CISM or related no exceptions
- The ideal candidate will need a strong Risk Background with experience in Identification and Assessment of Risk within Technology.
- This IS NOT a Compliance role!!!
- They must be able to challenge risk, not just check a box and move on. Look for "1b standards" on resumes, it is part of the FLOD. This is not super common, so if they have Information Security Controls Management, that is good as well...NOT Information Security Compliance.
- DevSecOps, is a plus - totally not a requirement at all.