LHH has a 12 month consultant assignment with a McLean, VA client. The role could possibly go permanent. We are looking for someone with skills in analyzing risks and controls and coming up with results. Has a good sense of project management and will communicate escalations to management as needed. Direct risk management experience is preferred, but demonstrable transferable skills may be acceptable.
Must Haves:
· Risk assessment experience
· Knowledge of SOC 1 and SOC 2 type II reports
· Information Security knowledge (preferred)
· Risk framework experience (preferred)
5+ Preferred: Certificates: CIA, CRISC, CISA, CISM, Supply chain background, compliance risk management audit background
Job Description:
• Analyze and assess risks (including technology, privacy security, resiliency, and other operational risks) that the organization and suppliers (vendors) may face
• Evaluate and analyze supplier controls, identify, and document risk findings based on that evaluation
• Recommend action plans/remediation to decrease risk factors
• Gather confidential financial information from client such as income, assets, and debts
• Able to handle private, sensitive, confidential information appropriately
• Make risk-avoiding adjustments to current methods of operation to minimize their future risks
• Strong working knowledge of risk management and previous experience working with risk (i.e., risk assistant or risk analyst)
• Solid research skills using the internet and first-person interviews
• Comfortable working in a fast-paced environment, and able to adapt to changing priorities
• Strong attention to detail and organization
• Excellent soft skills such as communication skills (written and spoken)
• Computer, data entry and MS Office skill
