As a Security Specialist at Kyndryl, you will play a crucial role in enabling and securing customer organizations, cultures, and ecosystems. You will assess, predict, prevent, and manage the risk of IT infrastructure and data, helping customers stay ahead of the curve and ensure their systems are secure.
What You'll Do
- Work on asset classification models, risk assessment reports, information security policies, security solution scenarios, implementation plans, organization models, procedures, security services, security effectiveness evaluation reports, and security awareness workshops.
- Configure, monitor, and manage the performance of networks to maintain the quality of services and protect organizational infrastructure from malicious cyber-attacks.
- Develop and implement security policies and procedures, working closely with other departments to ensure all security measures are in place and operating effectively.
- Explore innovation in CyberSecurity data science, looking for patterns and conclusions from data across single and multiple clients, creating new ideas in risk management and risk quantification.
- Raise awareness of potential security threats through technical security training on best practices.
What We're Looking For
- 2+ years of experience in more than one of the following GRC frameworks: enterprise risk management, internal audit, regulatory compliance management, policy management, third party risk management.
- Working knowledge of common audit and compliance tools.
- Experience in analyzing and translating business requirements into control objectives, designing security controls, and implementation within a security management cycle.
- Excellent understanding of security standards and best practices e.g., ISO27001, NIST.
- Experience in advising clients on one or more regulatory requirements (e.g., HIPAA, PCI DSS, FBA, GDPR, DORA).
- Experience performing GRC maturity assessments.
- Experience with coordinating SOC 2 and/or ISO 27001 audits.
Nice to Have
- Valid and current certification in: CRISC, CGEIT, CERA, CISM, CISA, CISSP.
- Statistical analysis and models.
- Basic skills in network, compute, cloud computing.
- Understanding and daily use of Microsoft Office 365 Suite and other productivity tools (e.g., Excel, Word, PowerPoint, SharePoint) to accomplish audit and compliance related tasks.
- Experience with project management and ability to manage security initiatives or projects.
Benefits & Compensation
- Access to employee learning programs and certifications including Microsoft, Google, Amazon, Skillsoft, and many more.
- Company-wide volunteering and giving platform to donate, start fundraisers, volunteer, and search over 2 million non-profit organizations.
- Benefits that give you choice and support you and your family through life moments.
Kyndryl is dedicated to creating a workplace where all Kyndryls can bring their whole self to work. We welcome people of all cultures, backgrounds, and experiences.
