Careers

Summary:
The Fraud Management Senior Consultant will complete a full scope review of fraud vulnerability potential within the customer’s organization. They will work with the customer to identify elements of the fraud equation that may be present. Fraud Management Consultants must be able to assess, investigate and suggest controls to remediate fraud activity. The Fraud Risk Assessment is conducted through an extensive evaluation of business, operations, management and technical controls.

Essential Duties:
Perform assessments and review to identify key risk areas. Assessments may include reviews of human resource, operations, process, finance, audit and technology controls.
Partner with Security Architects to identify gaps in information security processes and technology.
Conduct a series of interviews, work-group sessions, over-the-shoulder reviews, process review, and formal testing and validation.
Develop a comprehensive Review-of-Findings of the evaluated people, process, technologies and controls environment.
Partner with client to implement fraud controls and protocols throughout the organization.
May conduct or lead fraud investigations.
May develop fraud training and awareness campaigns.
Demonstrate a commitment to service and professionalism through appropriate conduct and demeanor at all times.
Maintain confidentiality and protects sensitive data at all times.
Adhere to organizational and department specific safety standards and guidelines.
Demonstrate exceptional customer service and interacts effectively with various levels within the organization and external agencies.
Other duties as assigned.

JOB REQUIREMENTS

Education and Experience:
Bachelor’s degree or equivalent work experience required. Certified Fraud Examiner (CFE) preferred. 12+ years professional experience in fraud management, audit, compliance, investigations, law enforcement, information security, project management or other related experience.
Experience working with regulatory agencies and prosecuting authorities.
Mastery level experience with problem identification, data collection, fact gathering, and root cause drill down.
Strong expertise with reading, analyzing, and interpreting contracts, regulations, common policies and procedures, reports, and legal documents.

Skills and Abilities:
Strong understanding of fraud prevention, detection, and management methodologies.
Ability to develop and manage action, remediation, and strategic plans. Outstanding interpersonal and communication skills.
Must possess a high degree of integrity and trust along with the ability to work independently.
Excellent written and oral communication skills and ability to articulate and present information to all levels of management and staff.
Excellent documentation skills; ability to capture and communicate findings in written Executive Report.
Ability to develop and present data in PowerPoint, Excel and Word documents.
Demonstrates initiative; is proactive in problem-resolution.
Must be able to travel and work effectively in remote environments.

Summary:
Perform information security reviews to identify gaps with information security requirements.
Perform IT risk assessments to identify key corporate security vulnerabilities that affect the confidentiality, integrity and availability of electronic protected information and other company confidential data.
Provides support to systems owners to address and implement solutions to identified security and risk issues.
Provide information security guidance at all stages of the system development and acquisition lifecycle.
Participate in the development of information security programs, policies, and guidelines.

Essential Duties:
Perform assessments of current security technology and authentication systems. Evaluate against regulations and frameworks which may include HIPAA, Federal and State Information Protection and Privacy regulations, PCI, internal Information Security Policies, HITRUST, NIST, ISO frameworks and other relevant regulations pertaining to the protection of data and assets.
Perform an assessment and review of new and existing technology infrastructure to identify key risk areas. Assessments may include threat, vulnerability, and/or penetration testing.
Facilitate and review control and compliance initiatives, such as self-assessments, third party reviews and due diligence initiatives.
Participate in the development of information security policies, standards and procedures in conjunction with application and technology teams.
Participate and sometimes lead the consultative process and advise personnel in IT departments to coordinate information security activities.
Collaborate with Information Security and Privacy leaders in implementing consistent security safeguards and controls throughout the organization.
Demonstrate a commitment to service and professionalism through appropriate conduct and demeanor at all times.
Maintain confidentiality and protects sensitive data at all times.
Adhere to organizational and department specific safety standards and guidelines.
Demonstrate exceptional customer service and interacts effectively with various levels within the organization and external agencies.
Other duties as assigned.

JOB REQUIREMENTS

Education and Experience:
Bachelor’s degree or equivalent work experience required.
Audit or security certification (CISA, CISSP, Security +) preferred but not required.
12+ years professional experience in Information Systems or related field Experienced in the management of both physical and logical information security systems.
Strong technical skills (application and operating system hardening, vulnerability, assessments, security audits, TCP/IP, intrusion detection systems, firewalls, etc).

Skills and Abilities:

Outstanding interpersonal and communication skills. Must possess a high degree of integrity and trust along with the ability to work independently. Excellent written and oral communication skills and ability to articulate and present information to all levels of management and staff.
Excellent documentation skills; ability to capture and communicate findings in written Executive Report.
Ability to develop and present data in PowerPoint, Excel and Word documents.
Ability to relate business requirements and risks to technology; have a wide range of experience with business and project planning, systems analysis and application development.
Ability to weigh business risks and enforce appropriate information security measures.
Ability to foster a collaborative and cross-functional team across distinct business units Knowledge of risk assessment procedures, policy formation, role-based authorization and authentication methodologies.
Must be able to travel and work effectively in remote environments.