Our professionals balance analytical skills, deep market insight and independence to deliver solid, defensible analysis and practical advice to our clients.
As an organization, we think globally. We create transparency in an opaque world, and we encourage our people to do the same.
That means when you take your place on our team, you’ll discover a supportive and collaborative work environment that empowers you to excel.
If you’re ready to share your perspective with the world, then you can make a real impact here. This is the Duff & Phelps difference.
At Duff & Phelps, your work will help protect, restore and maximize value for our clients. Join us and together we’ll maximize the value of your career.
Conduct security due diligence assessments at the request of the business to verify a vendor’s information security capabilities by providing security risk assessment questionnaires and creating final assessment reports
Negotiate with vendors to obtain remediation plans for issues identified
Complete client security questionnaires, answer follow-up questions and participate in client audits at the request of the business
Partner with business and other stake holders to ensure risks are clearly articulated in a manner that is understood by business and technology audiences
Work with the business to track the remediation to close out any vulnerabilities identified by clients
Review contracts and master service agreements as requested to ensure appropriate security language is present
Provide support in the development, implementation and maintenance of the Information Security program
Assist in the administration of an Information Security Awareness Program (new hire and annual training courses, phishing exercises, employee communications)
Perform general administrative duties as necessary to support Information Security operations
Partner with Information Security team resources as needed to assist the business in the development, maintenance, testing of their Business Impact Analysis (BIA) / Business Continuity Plans (BCP)
Minimum 3-5 years of experience in Information Security related positions
Bachelor's degree in a related field from an accredited college or university
CISSP certification preferred but not required
Good English written and verbal communication skills
Thorough understanding of, and experience with, Information Security program development, maintenance and governance
Strong research skills
Ability to plan and execute with minimal oversight
Ability to multi-task and prioritize tasks across a range of projects, adjusting to shifting priorities
Excellent time management and organization skills
Strong personal integrity
Demonstrate commitment to obtaining outstanding results
In order to be considered for a position at Duff & Phelps, you must formally apply via careers.duffandphelps.jobs
Duff & Phelps is committed to equal opportunity and diversity, and recruits people based on merit.