Security Risk Cover Letter

In response to your job posting for security risk, I am including this letter and my resume for your review.

In my previous role, I was responsible for research of best business practices, and review security bodies (Information Security Forum, NIST, SANS, etc.) policy and procedure templates; incorporate into Inmarsat body of policy, procedures, and guidelines.

My experience is an excellent fit for the list of requirements in this job:

• Significant knowledge and experience in all facets of risk management, security domain highly preferred
• Experience in cloud technology, threat management, vuln mgt, forensics or other technical security domain expertise
• Manage all the risk-related activities, including the planning, testing, reporting and recommending of appropriate remediation measures
• Manage the oversight and monitoring of risk mitigation and coordination of policy and controls to ensure that other managers are taking effective remediation steps
• Maintain up-to-date understanding of industry best practices and monitor the legal and regulatory environment for developments that could require changes to established IT policies and practices
• Work directly with teams from enterprise risk management, operational risk management and corporate security departments to facilitate IT risk analysis, identify acceptable levels of residual risk and establish roles and responsibilities related to risk reduction and closing of gaps
• Subject matter expertise in corporate security or risk management
• Previous experience developing and managing improvement processes and tools

I would like to submit my application for the security risk opening. Please accept this letter and the attached resume.

In my previous role, I was responsible for end users with training and support around Information Security tools, platforms and best practices.

Please consider my qualifications and experience:

• Previous experience working in at least two of the following roles
• Knowledge of ISO 27001 would be brilliant
• ISO22301 knowledge would be ideal
• Experience of ISMS management under ISO27001 in an IT environment
• A good understanding of security frameworks and associated legislation
• Access control requirements
• Network security requirements
• Secure data exchange requirements

Please consider me for the security risk opportunity. I am including my resume that lists my qualifications and experience.

In my previous role, I was responsible for security guidance for new projects to ensure security best-practices are implemented and that projects are developed in compliance with standards.

Please consider my qualifications and experience:

• Experience in designing and implementing standards, specifications and procedures
• Experience with ISO/NIST/COBIT is preferred
• Indepth knowledge of Technology risk and Information Security design, processes, concepts, industry standards
• CCSP, CISM, CISSP, CISA with security design experience
• Consistent implementation of security solutions
• Extensive knowledge of security risk analysis, industry information security standards, data security practices and procedures, network security, application security, and database security
• Requires understanding the impact of various data protection and integrity controls, operating systems and network security controls, authentication controls, and security protocols
• Successfully applies security principles to a diverse range of risk scenarios to coordinate acceptable solutions between business needs, technology operations, and information security best practices

I submit this application to express my sincere interest in the security risk position.

In the previous role, I was responsible for subject matter expertise to management on a broad range of information security standards, best practices, and compliance requirements.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Have technical knowledge and/or experience in security, networking, systems administration, database administration, architecture and/or other technical domains
• Knowledge and experience with NIST 800-53
• Knowledge and experience with Application Security (OWASP) risks
• Knowledge and experience with Network Security
• Previous work experience in Information Security and Cyber Security
• In-depth knowledge and experience of information security control frameworks ISO27001, PCI-DSS, HMG-SPF and CESG best practice guidelines
• Experience in the production of complex security solution design documentation
• Offers guidance and practical assistance on information security challenges throughout the business

I submit this application to express my sincere interest in the security risk position.

In my previous role, I was responsible for advisory support to the policy team on information security, baselines and industry best practices.

My experience is an excellent fit for the list of requirements in this job:

• Strong working knowledge of HIPAA and HITECH
• Solid understanding of application architecture and security audit principles
• Solid understanding of network and underlying infrastructure security principles
• Experience conducting security risk analyses and preparing remediation plans
• Experience negotiating IT contracts, preferably related to information security
• Familiarity with SOX and PCI-DSS
• Self-motivated and willing to stretch to meet important deadlines
• Experience with Separation/Segregation of Duties analysis for applications and data