Vacancy caducado!
Working within our central Network office and reporting to the CTO, the IT Security &Compliance Leader will be responsible for creating an enterprise wide security management program toensure that information assets are adequately protected. The Technology teammanages a modern technology environment built around cloud and SaaS based applications,operates networking and technologies across 47 locations, and supports manageddevices used by 23,000 users.
Responsibilities include:- Develop, implement and monitor a strategic, comprehensive enterprise information securityand risk management program;
- Work across organizational functions to facilitate risk assessment, risk management andimplement sensible controls;
- Develop and enhance an information security framework;
- Develop and implement a comprehensive incident response program;
- Monitor global and industry specific threats and develop mitigation strategies;
- Work to raise awareness of risk management and security practices across the enterprise;
- Provide leadership and mentoring to two direct reports on the security team;
- Contribute as a senior member of the technology team to all technology planning andimplementation processes and ensure that security is a component of all key decisions; and
- Ensure compliance with SEC/NFA guidelines, HIPPA, ISO 27001, COBIT, and NISTstandards.
- Demonstrated ability to implement a security management program to meet the needs of agrowing organization;
- Expertise in building a comprehensive enterprise security assessment framework andworking across the organization to build a sensible improvement plan;
- Exudes a calm, professional demeanor while acting decisively and with urgency;
- Ability to manage a crisis & declare incidents while calmly implementing contingency plans;
- Developing and executing on incident response protocols;
- Proven track record of security and compliance analysis and execution;
- Experience with building security programs for modern Cloud based, SAAS and G-suitebased technology environment;
- A proven manager able to build and mentor high functioning teams;
- Experience contracting and managing key vendors, outsourcers and contract personnel;10 years information security experience and 3 years in a security management/leadershiprole;
- Industry certification in at least one of the following areas is preferred: Certified InformationSystems Security Professional (CISSP), Certified Information Security Manager (CISM), ITIL,or Information Systems Security Management Professional;
- Bachelor’s degree and relevant experience.
Vacancy caducado!