Bachelor's degree in Computer Engineering orIT
5-7 years of experience in IT Security including mandatory4+ years of experience in GRC
BS / MS in ComputerScience (or relevant work experience)
Provenexperience architecting and implementing large-scale, enterprisewide GRC solutions.
Security certificationdesired ITIL, Certified Information Systems Auditor (CISA),Certified Information Systems Security Professional (CISSP),Certified in Risk and Information Systems Control (CRISC) orCertified in the Governance of Enterprise IT(CGEIT)
Demonstrated understanding of real-world application of(ISO / IEC) 17799 : 2005(E) standards, COBIT and RISK IT frameworks andPCI-DSS requirements.
Support GRC Lead andmanage adherence to access controls and process controls frameworkfor the WOQOD
Experience with one or more of thefollowing tools : RSA Archer, SAP GRC.
Ability toclearly communicate with technical and non-technical stakeholdersis a must, in order to translate technical jargon into businessrelated decisions for management and clients, and businessobjectives into technical solutions.