Manager - CS - Chennai, India - Cognizant Technology Solutions
Description
*Job Summary
· Provide governance and oversight support for HITRUST, PCI, and SOC-based certifications and attestations.
· Provide consultative support to Cognizant business units regarding HITRUST, PCI DSS, and SOC controls.
· Provide support as required for PCI DSS, HITRUST, SOC, and internal risk assessments across Cognizant and affiliates.
*Roles & Responsibilities
· Knowledge of privacy laws and security standards, rules and regulations.
· Utilize knowledge and background in security audits and assessments.
· Coordination and oversight of the audit / assessment lifecycle including initiating and scoping, planning, execution, remediation, and certification.
· Administration and maintenance of information systems used to govern HITRUST and PCI DSS assessments.
· Proactive and structured communications to ensure situational awareness among impacted stakeholders.
· Provide consultation to business units and other impacted stakeholders, to include interpretation of audit controls and security standards, scoping consultation, and facilitation of consultation with third party assessment firms.
· Governance of HITRUST Certifications program, including third party assessor management; management and maintenance of program policies, standards, and procedures; facilitation of program improvement processes; and management and maintenance of program governance information systems.
· Collaborate as needed with security, audit, and IT teams to optimize assessment activities and maximize efficiency while maintaining quality and integrity of assessments and audits.
*Primary Skills
· 5+ yrs experience in an information security or related field, especially in the areas of governance, information risk management, and security audits and assessments.
· Experience and certification or extensive demonstrated experience in HITRUST certifications required.
Secondary Skills
· Experience in managing PCI DSS assessments preferred.
· Former IT / computer science / computer engineering experience preferable.
· Project or program management experience preferable.
*Certification(s) Required
· Bachelors' degree in Computer Science or equivalent certification preferred.
· HITRUST certification preferred (e.g., Certified CSF Practitioner, Internal Assessor).
· PCI certification preferred (e.g., PCIP or former PCI ISA).