National Search Services is looking for a Contracts Advisor – Risk and Information Security located in the Chicago area. This is a full time permanent position.

Location and Pay Range:

• Chicago, IL
• $100k-$135k

Description:

• A welcoming and energetic environment that encourages collaboration and innovation. We consistently explore new technologies and tools to be agile.
• Flexible time off, workplace flexibility, an environment that welcomes continued professional growth through support of tuition reimbursement, conferences and seminars.
• Our culture encourages our people to hone current skills and build new capabilities, while discovering their genius.
• Review contracts, Master Service Agreements, Business Associate Agreements, Request for Proposals (RFP), Statements of Work (SOW), to determine compliance with policies.
• Provide input to the development of contracts and commercial policies and processes. Provide guidance on contract matters to project managers or other operational staff, including training to new project managers and other employees in contracting practices and procedures.
• Build relationships cross functionally and globally with risk stewards, internal stakeholders, and third parties. Promote a risk-aware culture, with effective risk and compliance management practices.
• Strong interpersonal, written, and oral communication skills. Ability to effectively communicate to all levels of the organization, including senior management, business stakeholders and third parties. Ensure that risks are promptly and clearly articulated and escalated appropriately.
• Support projects that help improve the assessment process and support our overall Third-Party Risk Management strategy. Communicate with management regarding project obstacles and take ownership of their resolution to continue progress towards deliverables and timelines.

Requirements:

• 5-7 years’ Information Technology experience with a focus on Information Security
• Familiarity with current information security technologies and past experience in multiple of the following domain areas: Identity and Access Management, Application Security, Infrastructure Security, System & Data Security, Physical and Environmental Security, Business Continuity/Disaster Recover, and Regulatory/Standard Compliance.
• 3 years’ experience in infosec: Broad exposure – cyber/architecture/etc – knows regulatory standards and policies PCI/SSAE18 NEED someone with contracts AND information security IT experience Currently there are 300 contracts in flux and we are adding more third parties so this is the reason for the opening Basic knowledge of legal concepts and HR terms
• Familiarity with industry frameworks and standards such as SSAE18, PCI, and ISO 27001/27002
• Bachelor’s Degree in Computer Science or related field

Preferred:

• Information Security (CISSP, CISA, Security +) certification
• Proficiency in Microsoft Office Suite (especially PowerPoint and Excel) and Microsoft Project
• Law background

WE ARE AN EQUAL OPPORTUNITY EMPLOYER. Applicants and employees are considered for positions and are evaluated without regard to mental or physical disability, race, color, religion, gender, national origin, age, genetic information, military or veteran status, sexual orientation, marital status or any other protected Federal, State/Province or Local status unrelated to the performance of the work involved.