Cyber Risk Services Advisor | Part-Time

About The Position

Requirements

• Bachelor's degree from an accredited college or university preferred.
• Advanced IT related education preferred.
• Eight (8) years of related experience including technology related experience to include at least two (2) years systems auditing or consulting experience, experience managing IT risk including expansion of business projects, experience working in small, medium, and large-scale business environments, and experience in risk assessment, analysis, solutions management, and progress measurement or equivalent combination of education and experience required.
• Knowledge of current systems and technological developments/trends used by public sector entities including police, fire, detention, emergency management, water, sewer, solid waste, health and human services, and local fairs
• Knowledge of regulations and laws related to IT compliance standards governing aspects of the utilization of computer systems
• Knowledge of phishing campaign platforms
• Ability to obtain inventory from client virtually of hardware, software, applications, and infrastructure
• Excellent oral and written communication skills, including presentation skills
• PC literate, including Microsoft Office products
• Analytical and interpretive skills
• Strong organizational skills
• Excellent interpersonal skills
• Ability to create and complete comprehensive, accurate and constructive written reports
• Ability to work in a team environment
• Ability to meet or exceed Performance Competencies

Nice To Haves

• Relevant professional certification such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) preferred.

Responsibilities

• Performs general, hardware, mobile, operating system, encryption, software, and application control reviews for simple to complex computer information systems and peripherals for members.
• Performs information control reviews to include website, network, wireless, communication, records, firewall, anti-virus, and disaster/breach recovery, and system maintenance for members.
• Performs information policy, privacy, security, surveillance, projects, and inventory control reviews for members.
• Conducts virtual system evaluations, assesses system, software, application, and data security controls; recommends security and service plans to control source of risk, loss, and/or costs.
• Consults with and advises underwriting, marketing, agents and claims regarding system evaluation results and trends.
• Provides on-site individual or group training in regard to information technology security with the assistance of higher-level team members or leadership.
• Maintains knowledge of relevant state-of-the-art technology, equipment, and/or systems.
• Provides technical support to Risk Control and Underwriting providing guidance on available resources, legislation and applicable regulations, technology, industry trends and effective methods to reduce risk and improve customer satisfaction.
• Collaborates with team members and/or management in developing IT related risk control policies, procedures, resources, and statistics, and with the Pool in developing articles and newsletters.
• Performs other duties as assigned.
• Travels as required.