Home  Post Resume Quick IT Job Search  Advanced IT Job Search 
Skip Navigation LinksHome » Job Details
WINTSCO Infotech, Inc.
  Company Profile
WINTEC Software Corporation is a professional technology solutions provider & IT staffing company. We specialize in IT staffing / staff augmentation, enterprise wide application implementation, project consulting services, on-site / off-site projects, fixed price contracts, software training, and disaster recovery and business continuity planning. WINTEC Software Corporation, established in 1998, is headquartered in Silicon Valley – Santa Clara, CA.
WINTEC provides its services throughout the continental United States leveraging management resources from California and from four regional offices. In addition, we specialize in telecommunication and networking domain by providing development, programming & support service in the areas of IT – software, engineering and networking area.

Further, our customer’s would testify to the fact that quick turn-around time and lowest cost makes us extremely competent, entrepreneurial and transparent in our approach

  Job Details 

Information Security Analyst : PCI, SOX, HIPAA, ISO 27001 : San Francisco, CA

Posted On:  10/12/2018 2:28:30 AM

Information Security Analyst

No. of vacancies:  1
Qualifications:  Degree in Computer Science
Essential Skills: 
Not specified
Minimum Total Experience:  4
Job Tenure:  No Preference/Any
Salary Offered:  DOE
Job Location:  San Francisco, CA United States

  Job Description
The IT Risk Management and Compliance function is responsible for building and promoting an enterprise wide IT Risk Management and Compliance Program, specifically:

Build and manage processes and supporting tools to support evaluation and monitoring of IT risk management including risks related to

strategic projects / initiatives * both customer facing and internally focused

new areas of business and/or emerging technologies

acquisitions and divestitures

customer and vendor management

Build and manage processes and supporting tools to support evaluation and monitoring of IT compliance * focusing initially in implementing a framework around the ISO 27001 security standard, and then incorporating other existing compliance areas such as PCI, SOX, HIPAA etc.

Manage the IT security policy lifecycle * including policy maintenance, training and awareness, and compliance monitoring

Provide IT Risk Management consulting and advisory services to the businesses:

Advice as part of their customer facing product and service development efforts

Advice on internal development projects

Support when responding to incidents

Services to perform more detailed risk assessments and security reviews as needed

Support in responding to customer requests related to IT risk management and security

Manage related governance structure, metrics and reporting protocols


Primary task is to review customer contracts for Information Technology and Information Security-related content. We are bring in a 3rd party organization to perform a detailed review and analysis of this content, and need to have the data collected and prepared in a way that will be useful and efficient for them.

Interact with various business and IT individuals to collect relevant contract information (in conjunction with other ITRM personnel)

Review contracts for IT and Security-related content; pull content into external document/spreadsheets for further organization

Analyze and collate the various language into a manageable set of data

To accomplish this, the individual would likely need a few years of IT-related experience, but would not necessarily have to be deeply technical.

4+ years in Security Services, IT audit, Internal Audit and/or Risk Management Experience would be helpful
Knowledge of the healthcare and software industries.

  Contact Information
Reference Name (If Any): 

Terms and Conditions | Privacy Policy | FAQ | Contact Us | Why?? | Link to us