Job Description

Overview:170+ Years Strong. Industry Leader. Global Impact.
At Pinkerton, the mission is to protect our clients. To do this, we provide enterprise risk management services and programs specifically designed for each client. Pinkerton employees are one of our most important assets and critical to the delivery of world-class solutions. Bonded together, we share a commitment to integrity, vigilance, and excellence.Pinkerton is an inclusive employer who seeks candidates with diverse backgrounds, experiences, and perspectives to join our family of industry subject matter experts.Pinkerton is looking for an Information Security (InfoSec) Governance and Risk Specialist. The successful candidate will develop, monitor, and manage enterprise-wide information security controls, ensuring adherence to global standards such as ISO/IEC 27001 and NIST framework. We seek an analytical mind that is both strategic and execution-focused, committed to upholding the highest process excellence and dedicated to safeguarding our digital assets. Responsibilities:

• Represent Pinkertonxe2x80x99s core values of integrity, vigilance, and excellence.
• Embody the core values of Pinkerton which are integrity, vigilance, and Champion the governance, risk, and compliance (GRC) initiatives, focusing specifically on information security across the global enterprise.
• Design and sustain rigorous InfoSec policies and controls to preempt security violations and protect against breaches and incidents.
• Oversee the creation and ongoing management of documentation within the IT Governance, Risk & Compliance domain.
• Lead the enforcement of Security Assurance protocols, including Vulnerability Assessment and Penetration Testing (VAPT), and Application Security standards.
• Formulate and conduct comprehensive security audits and process validation for enterprise.
• Periodically review Security Architecture and configurations to ensure they meet or exceed industry best practices.
• Carry out continuous monitoring and maintenance of all aspects of Network Security, End User Computing (EUC) Security, and Data Security.
• Proactively identify information security risks and implement solutions to enhance the organizationxe2x80x99s security stature.
• Assess security activities and reports to mitigate potential InfoSec incidents
• All other duties, as assigned.

Qualifications:

• Bachelorxe2x80x99s degree in Information Technology, Computer Science, or related
• At least 7-9 years of experience in Information Technology, with a minimum of 5 years focused on InfoSec or IT risk governance.
• Professional certifications such as CISA, ISO/IEC 27001 Lead Auditor, ITIL, Certified Risk and Information Systems Control (CRISC), or Certified Risk and Compliance Management Professional (CRCMP) are highly desirable.

Competencies:

• Expert knowledge of IT Governance, Risk & Compliance as related to information security.
• Experience implementing and managing Information Security programs such as Data Loss Prevention, Incident and Event Management, Threat Analysis, and Response.
• Clear understanding of ISMS (ISO/IEC 27001), Risk Management (ISO 31000), and cloud-based security measures.
• Familiarity with Business Continuity Planning & Disaster Recovery, as well as data protection regulations such as GDPR and DPDP.
• Proven track record of conducting Internal IT Audits and performing thorough root-cause.

Working Conditions:With or without reasonable accommodation, requires the physical and mental capacity to perform effectively all essential functions. In addition to other demands, the demands of the job include:

• Regular computer usage.
• Frequent sitting, standing, and/or walking.
• Travel, as required.
• Must undergo and meet company standards for background and reference checks, drug testing, and behavioural selection survey.
• Maintain composure in dealing with authorities, executives, clients, staff, and the public occasionally under conditions of urgency and in pressure situations.
• Exposure to sensitive and confidential
• Ability to handle multiple tasks
• Must be able to see, hear, speak, and write clearly in order to communicate with employees and/or
• Manual dexterity required for occasional reaching and lifting of small objects and operating office equipment.
• Close and distance vision and ability to adjust.

Pinkerton is an equal opportunity employer to all applicants and positions without regard to race/ethnicity, color, national origin, ancestry, sex/gender, gender identity/expression, sexual orientation, marital/prenatal status, pregnancy/childbirth or related conditions, religion, creed, age, disability, genetic information, veteran status, or any protected status by local, state, federal or country-specific law.

Pinkerton Consulting & Investigations