WINTEC Software Corporation is a professional technology solutions provider & IT staffing company. We specialize in IT staffing / staff augmentation, enterprise wide application implementation, project consulting services, on-site / off-site projects, fixed price contracts, software training, and disaster recovery and business continuity planning. WINTEC Software Corporation, established in 1998, is headquartered in Silicon Valley – Santa Clara, CA.
WINTEC provides its services throughout the continental United States leveraging management resources from California and from four regional offices. In addition, we specialize in telecommunication and networking domain by providing development, programming & support service in the areas of IT – software, engineering and networking area.
Further, our customer’s would testify to the fact that quick turn-around time and lowest cost makes us extremely competent, entrepreneurial and transparent in our approach
Information Security Analyst : PCI, SOX, HIPAA, ISO 27001 : San Francisco, CA
11/27/2016 10:41:36 PM
Information Security Analyst
Degree in Computer Science
The IT Risk Management and Compliance function is responsible for building and promoting an enterprise wide IT Risk Management and Compliance Program, specifically:
Build and manage processes and supporting tools to support evaluation and monitoring of IT risk management including risks related to
strategic projects / initiatives * both customer facing and internally focused
new areas of business and/or emerging technologies
acquisitions and divestitures
customer and vendor management
Build and manage processes and supporting tools to support evaluation and monitoring of IT compliance * focusing initially in implementing a framework around the ISO 27001 security standard, and then incorporating other existing compliance areas such as PCI, SOX, HIPAA etc.
Manage the IT security policy lifecycle * including policy maintenance, training and awareness, and compliance monitoring
Provide IT Risk Management consulting and advisory services to the businesses:
Advice as part of their customer facing product and service development efforts
Advice on internal development projects
Support when responding to incidents
Services to perform more detailed risk assessments and security reviews as needed
Support in responding to customer requests related to IT risk management and security
Manage related governance structure, metrics and reporting protocols
Primary task is to review customer contracts for Information Technology and Information Security-related content. We are bring in a 3rd party organization to perform a detailed review and analysis of this content, and need to have the data collected and prepared in a way that will be useful and efficient for them.
Interact with various business and IT individuals to collect relevant contract information (in conjunction with other ITRM personnel)
Review contracts for IT and Security-related content; pull content into external document/spreadsheets for further organization
Analyze and collate the various language into a manageable set of data
To accomplish this, the individual would likely need a few years of IT-related experience, but would not necessarily have to be deeply technical.
4+ years in Security Services, IT audit, Internal Audit and/or Risk Management Experience would be helpful
Knowledge of the healthcare and software industries.