• Director, Information Security

    Additional Posting Locations 3 weeks ago(1/3/2019 3:39 PM)
    Requisition ID
    2018-2474
    # of Openings
    1
    Category (Portal Searching)
    Information Technology - Leadership
  • Overview

    The Director of Information Security is responsible for providing strategic direction and operational management of Company information security systems. This individual must possess an in-depth knowledge of regulatory requirements as well as Information Security systems, services, best practices, policies, procedures and controls. The Director is knowledgeable of industry trends and interacts with all levels of management (including the Leadership Team) as well as technicians. We are looking for a visionary, strategic thinker who will question the norms, know when to take risks and lead with assertiveness. Opportunity to participate in a national, world class threat intelligence community.

    Responsibilities

    • Leader for all security matters, including Governance, Risk, and Compliance, Cyber Security, Application Security, Identity and Access Management, Security Operations Management
    • Serve as subject matter expert including applicable standards, rules, regulations, and best practices
    • Direct dedicated security resources to operate against the security program plan
    • Direct the execution security risk assessments and conduct related ongoing compliance monitoring activities
    • Direct the execution of risk mitigation plans generated as a result of risk management analysis
    • Ensure all information technology systems, policies and procedures fully comply with applicable laws, standards, and regulations
    • Monitor and evaluate security measures to protect against reasonably anticipated threats or hazards to the confidentiality, integrity, and availability of all applicable data
    • Ensure the effective execution of security and compliance training for account employees, including the alignment of regulatory and account specific changes
    • Engage with business leaders and corporate functions such as legal, HR, IT, to support contract committed services
    • Engage with external auditors, and other third parties in support of Security activities
    • Develop project plans, estimations, specifications, flowcharts, and presentations

    Will lead Security initiatives related to:

    • Implementation of DevSecOps
    • Secure Cloud Migrations / Integrations
    • Incorporating a data-centric, analytic and fact driven approach utilizing AI, machine learning tools
    • Analysis of current & future threat landscape

    Qualifications

    Education and Experience:

    • Bachelor's Degree in Computer Science or related field required.
    • Master’s degree in Computer Science, Information Security or related field preferred.
    • Minimum eight to ten years of experience in information security Minimum five years supervisory experience required.

     

    Requirements:

    • 5+ years managing teams
    • 7+ years in Information Security
    • In depth knowledge of Information risk concepts / relating business needs to security controls
    • Familiarity with legal/regulatory requirements like SOX, HIPAA
    • Information Security CISSP, CISA, CISM, Info-Sec Security Certs are Preferred.

    Preferred Qualifications:

    • 5+ years progressive experience in information security management, information management, information systems and/or risk management is required.
    • Knowledge and understanding of relevant legal and regulatory requirements, such as Payment Card Industry/Data Security Standard (PCI).
    • Experience with Firewalls, NIDS, SIEM, End Point Security, Mobility Management, Vulnerability Scanning.
    • Strong experience in securing AWS cloud infrastructure
    • \Strong experience and detailed technical knowledge in security engineering, application security, system and network security, authentication, security protocols, and other security technologies
    • General understanding of risk-based assessment methodologies.
    • Must be proficient in Microsoft Office Suite.
    • Working knowledge of Microsoft Project and Visio preferred.
    • Information Security certification (e.g., CISSP, CISSLP, GIAC, CISA, etc.) preferred. PMP certification preferred.
    • Demonstrates attention to detail.
    • Excellent written and verbal communication skills
    • Strong interpersonal skills

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.