Information Security Engineer - Assurance

Software Guidance & Assistance, Inc., (SGA), is searching for an Information Security Engineer - Assurance for a CONTRACT assignment with one of our premier financial services clients in Dallas, TX Responsibilities :

• Under very limited direction, responsible for implementing and administering a comprehensive information security assurance strategy.
• Acts as the subject matter expert and principal consultant to business clients and department management on matters of information security policy, risk assessment, identity management, access controls and compliance.
• Identifies solutions for the most complex client inquires and business requirements and implements process improvements aligned with information security frameworks and business needs.
• Communicates information and ideas clearly and with sensitivity to diversity of audiences.
• Performs risk assessments, develops and recommends mitigating controls, and remains abreast of advancements that address emerging business and environmental factors impacting assurance levels.
• Generally responsible for one or more areas including security and identity or compliance
• Leads identity and access management efforts in accordance with security policies, standards, guidelines, and operational procedures.
• Implements and troubleshoots the District's user account lifecycle to provision, maintain and terminate user accounts across multiple directories, applications, platforms and networks.
• Administers periodic access reviews and supports internal audits of access controls.
• Identifies potential weaknesses and opportunities for corrective action.
• Designs role-based access controls.
• Develops workflows and process documentation.
• Identifies potential non-compliance situations and informs department leadership.
• Serves as a leading customer interface for the Information Security Department.
• Consults with clients regarding access requirements.
• Optimizes the use of technology to improve the customer experience.
• Troubleshoots complex customer access issues and system and service access requests.
• Analyzes and develops process and technology enhancements to improve user account management and performance.
• Serves as the District's subject matter expert for Identity and Access strategy and processes, including audit and privacy requirements.
• Conducts relevant System and industry research to proactively identify and anticipate changes in identity management processes and compliance requirements.
• Advises Information Security colleagues and Bank staff on access management requirements, processes, tools, and technologies.
• Consults with information system owners to categorize systems; select, implement and assess controls; and frame, assess and monitor risk
• Maintains risk management documentation to monitor lifecycle progress, track acceptance decisions and catalog remediation actions.
• Utilizes automated Governance, Risk and Compliance tools to track artifacts of the risk management lifecycle.
• Analyzes, designs, and implements business processes and requirements to ensure compliance with security policies and procedures.
• In accordance with approved security frameworks, advises information security colleagues and business clients on information security requirements, compliance responsibilities and methods to protect Bank resources and sensitive information.
• Reviews internal, government, academic and commercial sources of information to anticipate new security compliance requirements and identify advancements to best practices for protecting resources and information.
• Drafts local policies, standards, guidelines and procedures to supplement enterprise security frameworks.
• Prepares reports on compliance status and contributes to security breach reporting activities.

• Bachelor's Degree or 4 years equivalent experience; Bachelor's Degree preferred
• Experience applying risk management frameworks such as NIST 800-37 is required
• This position requires that candidates fall within one of the following citizenship categories: 1. U.S. Citizen native or naturalized. 2. Permanent resident who has applied for U.S. Citizenship 3. Permanent resident who is not yet eligible to apply for citizenship -require the person to sign a letter of intent to file for U.S. Citizenship within 6 months of becoming eligible. A permanent resident is eligible to file five years after receiving the permanent residency. If the person received permanent residency through marriage, he or she is eligible after three years.