Position Description:

CGI is looking for a Security & Compliance SME. This role is based in Houston, Texas.

Your future duties and responsibilities:

The Security and Compliance SME is responsible for assuring Security and Compliance for a portfolio of Applications and Organizational compliance against IT general controls.

Responsibilities include

Provide subject matter expertise in areas of Security and compliance

* To coordinate the application risk assessments with predefined framework.
* Inputting all the information from Company Business Application Owners (BAOs) and IT function within Clients system of record for risk assessments (Collective and/or RiskInsight).
* Request all necessary Regulatory artefacts (e.g. data disposal plan, privacy notices) from the client
* Track the receipt of all IT control evidences from the client
* Report and escalate to the nominated focal point the non-receipt of information or IT control evidences
* Coordinate all the necessary Information Risk Management (LOD2) assessment assurance and controls walkthroughs where required.
* Reach out to any other SME teams in client organization who may need to be consulted such as Legal, Security Operations, DPCV, C&P etc. to obtain clarifications about control gaps or custom/specialized questions related to the new applications.
* Inputting all the required information from company CISO (InfoSec), IT function, Legal, HR, Physical Security teams within client system of record for risk assessments (Collective and/or RiskInsight). Review all existing company policy evidence against the 28 Organizational IT controls and decide whether they meet the requirements of the intent or meet full Compliance.
* Discussing with the nominated company face-off (normally CISO or InfoSec Manager), the gaps which exist and jointly agree how to close them with an action plan
* Report and present gaps arising from this assessment to the SteerCo and IT leadership as required in form of summary via PM.

Required qualifications to be successful in this role:

Must have experience in organization level IT policies compliance and applications level IT information risk management and compliance.

The person should have very good communication skills and ability to interact with C level executives. Additionally should have good understanding of various compliance frameworks e.g: SOX COBIT IT 404 compliance, ITIL etc.

#LI-SG2

CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set level, experience and training, and licensure and certifications. To support the ability to reward for merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $74,600- $181,800.

At CGI we call our professionals "members" to reinforce that all who join our team are, as owners, empowered to participate in the challenges and rewards that come from building a world-class company. CGI's benefits include:

* Competitive base salaries
* Eligibility to participate in an attractive Share Purchase Plan (SPP) in which the company matches dollar-for-dollar contributions made by eligible employees, up to a maximum, for their job category
* 401(k) Plan and Profit Participation for eligible members
* Generous holidays, vacation, and sick leave plans
* Comprehensive insurance plans that include, among other benefits, medical, dental, vision, life, disability, out-of-county emergency coverage in all countries of employment;
* Back-up child care, Pet insurance, a Member Assistance Program, a 529 college savings program, a personal financial management tool, lifestyle management programs and more

Skills:

* Compliance

What you can expect from us:

Insights you can act on

While technology is at the heart of our clients' digital transformation, we understand that people are at the heart of business success.

When you join CGI, you become a trusted advisor, collaborating with colleagues and clients to bring forward actionable insights that deliver meaningful and sustainable outcomes. We call our employees "members" because they are CGI shareholders and owners and owners who enjoy working and growing together to build a company we are proud of. This has been our Dream since 1976, and it has brought us to where we are today - one of the world's largest independent providers of IT and business consulting services.

At CGI, we recognize the richness that diversity brings. We strive to create a work culture where all belong and collaborate with clients in building more inclusive communities. As an equal-opportunity employer, we want to empower all our members to succeed and grow. If you require an accommodation at any point during the recruitment process, please let us know. We will be happy to assist.

Ready to become part of our success story? Join CGI - where your ideas and actions make a difference.

Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, or any other legally protected status or characteristics.

CGI provides reasonable accommodations to qualified individuals with disabilities. If you need an accommodation to apply for a job in the U.S., please email the CGI U.S. Employment Compliance mailbox at [ Email address blocked ] - Click here to apply to Security & Compliance SME. You will need to reference the requisition number of the position in which you are interested. Your message will be routed to the appropriate recruiter who will assist you. Please note, this email address is only to be used for those individuals who need an accommodation to apply for a job. Emails for any other reason or those that do not include a requisition number will not be returned.

We make it easy to translate military experience and skills! Click here to be directed to our site that is dedicated to veterans and transitioning service members.

All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held. CGI will consider for employment qualified applicants with arrests and conviction records in accordance with all local regulations and ordinances.

CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI's legal duty to furnish information.