Certified information systems security professional vs information security consultant

Differences between certified information systems security professional and information security consultant duties and responsibilities

Certified information systems security professional example responsibilities.

• Manage security audit projects to industry standards and federal regulations (SOX, SSAE16, FFIEC).
• Implement a manage endpoint encryption solution utilizing TrendMicro MobileArmor to secure university workstations against sensitive data loss.
• Utilize IBM's SIEM, QRadar, to proactively protect Sherwin-William's assets.
• Review DOD compliance database for open assets, late reporting and current compliance on newly post IAVAs and short suspense IAVAs.
• Test and evaluate information systems using NESSUS software to detect vulnerabilities and improve on security.
• Provide project management assistance and oversight--addressed organization concerns and questions about baseline architecture requirements and its enhance system-computing environments.
Show more

Information security consultant example responsibilities.

• Manage the conversion to a hybrid NAS/disk/tape CommVault base backup environment resulting in decreasing backup windows and improving recovery objectives.
• Perform privacy and security assessments and HIPAA compliance analysis of cloud-base medical service; draft legal opinion letter regarding same.
• Provide guidance to different teams for closing critical infrastructure, network and application security vulnerabilities report in 3rd party security audit.
• Defined/Creat tables, process SQL backup restore via export/import.
• Select and on-board audit firm to perform management SOX testing.
• Perform ISO testing to ensure compliance with security framework controls.
Show more