Conduct information security risk assessments for UCSF information systems, affiliate organizations, and vendors and oversee information security risk management processes, including scoping, intake, review, reporting, risk remediation, and risk acceptance. Review system design and security controls against NIST Cybersecurity Framework, PCI-DSS, NIST 800-53, ISO 27001/2, and other standard security frameworks. Establish and maintain effective risk assessment and risk management practices, following NIST 800-30, 800-37, and 800-39 guidance. Develop risk management reporting methodologies and support management visibility of risk management program and UCSF risk profile. Consult with internal customers and external vendors on UCSF security compliance requirements, includin
This job listing is no longer active.
Check the left side of the screen for similar opportunities.
Loading. Please wait.
Copyright 2022 by Military Operations Research Society