Attention! This job posting is 7 days old and might be already filled.
| Company Name | PPR Career, Inc. |
| Location | Charlotte, North Carolina , NC |
| Date Posted | Nov 03, 2011 |
| Category | Default |
| Job Type | Permanent |
Description
Are you an experienced Chief Information Security Officer that is interested in establishing a Security department within a cutting-edge technology firm? If so, PPR Career, Inc. would like to speak with YOU!
Our client has continued to experience tremendous growth and prosper in spite of the current overall economic climate. This is a tremendous opportunity for someone to come in and make an immediate impact.
Position Description:
Under the general direction of the CIO, the Chief Information Security Officer (CISO) is responsible for the development, delivery, and management of a comprehensive information security program for the company. The scope of this program is enterprise-wide to cover the corporate, satellite, and remote protection requirements of the data, computers, networks, servers, and peripheral devices comprising the business. In addition this position is responsible for managing and controlling the promotion of system and application software from development to test to production. The purpose of the position and program is to assure that information created, acquired or maintained by the company, and its authorized users is used in accordance with its intended purpose; to protect company information and its infrastructure from external and internal threats; and to assure that the company complies with robust protection practices as well as statutory and regulatory requirements regarding information access, security, and privacy.
General Purpose:
• The Chief Information Security Officer (CISO) serves as the process owner for all ongoing activities that serve to protect the confidentiality and integrity of customer, employee, and business information in compliance with organization policies and standards.
Key Responsibilities and Duties:
• Manages the enterprise Information Security and Risk Management program.
• Develops, documents and implements information security programs, policies, standards and procedures including change management of system and application software.
• Initiates, facilitates, and promotes activities to create information security awareness within the organization.
• Provides direct training and oversight to all employees, affiliate marketing partners, alliances, or other third parties, ensuring proper information security clearance in accordance with established organizational information security policies and procedures.
• Develops, implements, and performs ongoing information security risk assessments targeting information security and privacy matters and providing recommended methods for vulnerability detection and remediation.
• Conducts and/or oversees independent vulnerability testing.
• Serves as an internal audit resource for security issues.
• Reviews all system-related security plans throughout the organization's network, acting as a liaison and technical security resource to Information Systems.
• Manages, monitors and reports on the internal security and control systems to ensure that appropriate access levels are maintained, e.g., day-to-day administration of firewalls.
• Manages, monitors and reports on relevant information security control activity logs and devices referring problems to the executive committee.
• Monitors compliance with information security and change control policies and procedures, referring problems to the CTO.
• Coordinates the activities of the Information Security Committee.
• Develops and implements an “Incident Reporting and Response Program” to provide a structured response to information security incidents.
• Maintains active networking, research and industry liaison to identify information security best practices, equipment and device updates, existing and emerging IS threats.
• Keeps abreast of latest security and privacy legislation, regulations, advisories, alerts which may impact the company and its’ security.
• Advises the organization with current information about information security technologies and related regulatory issues.
Requirements:
• 7 to 12+ years of experience in information technology and security.
• Strong written and oral communications skills.
• Organized, responsive and highly thorough problem solver.
• Minimum Bachelors’ degree (Master’s preferred) in computers, technology or related field.
• Preferred certifications: CISSP, CISM, CISA.
• Solid knowledge of information security principles and practices as applied to systems including networks, servers, firewalls, antivirus, spam management, software and OS patch update protocols, filters, logging, intrusion and anomaly detection, e-Commerce and web site protection protocols.
• Experience with data loss prevention tools including logging, audit and intrusion detection systems.
• Experience with installation, configuration, and monitoring security system, and response to issues.
• Understanding of advanced security protocols and standards.
• Experience with software and security architectures and evaluation and development of approaches to solutions.
• Experience with proactive assessment of potential items of risk and vulnerability threats in the network.
• Experience with security practices of Intranet and Extranet.
PPR Career, Inc. offers a variety of employment opportunities and benefits. Please check out our website for additional opportunities.
Ask about our Employee Referral Program! We offer fees for any placement of referred candidates. Please inquire about details.
Our client has continued to experience tremendous growth and prosper in spite of the current overall economic climate. This is a tremendous opportunity for someone to come in and make an immediate impact.
Position Description:
Under the general direction of the CIO, the Chief Information Security Officer (CISO) is responsible for the development, delivery, and management of a comprehensive information security program for the company. The scope of this program is enterprise-wide to cover the corporate, satellite, and remote protection requirements of the data, computers, networks, servers, and peripheral devices comprising the business. In addition this position is responsible for managing and controlling the promotion of system and application software from development to test to production. The purpose of the position and program is to assure that information created, acquired or maintained by the company, and its authorized users is used in accordance with its intended purpose; to protect company information and its infrastructure from external and internal threats; and to assure that the company complies with robust protection practices as well as statutory and regulatory requirements regarding information access, security, and privacy.
General Purpose:
• The Chief Information Security Officer (CISO) serves as the process owner for all ongoing activities that serve to protect the confidentiality and integrity of customer, employee, and business information in compliance with organization policies and standards.
Key Responsibilities and Duties:
• Manages the enterprise Information Security and Risk Management program.
• Develops, documents and implements information security programs, policies, standards and procedures including change management of system and application software.
• Initiates, facilitates, and promotes activities to create information security awareness within the organization.
• Provides direct training and oversight to all employees, affiliate marketing partners, alliances, or other third parties, ensuring proper information security clearance in accordance with established organizational information security policies and procedures.
• Develops, implements, and performs ongoing information security risk assessments targeting information security and privacy matters and providing recommended methods for vulnerability detection and remediation.
• Conducts and/or oversees independent vulnerability testing.
• Serves as an internal audit resource for security issues.
• Reviews all system-related security plans throughout the organization's network, acting as a liaison and technical security resource to Information Systems.
• Manages, monitors and reports on the internal security and control systems to ensure that appropriate access levels are maintained, e.g., day-to-day administration of firewalls.
• Manages, monitors and reports on relevant information security control activity logs and devices referring problems to the executive committee.
• Monitors compliance with information security and change control policies and procedures, referring problems to the CTO.
• Coordinates the activities of the Information Security Committee.
• Develops and implements an “Incident Reporting and Response Program” to provide a structured response to information security incidents.
• Maintains active networking, research and industry liaison to identify information security best practices, equipment and device updates, existing and emerging IS threats.
• Keeps abreast of latest security and privacy legislation, regulations, advisories, alerts which may impact the company and its’ security.
• Advises the organization with current information about information security technologies and related regulatory issues.
Requirements:
• 7 to 12+ years of experience in information technology and security.
• Strong written and oral communications skills.
• Organized, responsive and highly thorough problem solver.
• Minimum Bachelors’ degree (Master’s preferred) in computers, technology or related field.
• Preferred certifications: CISSP, CISM, CISA.
• Solid knowledge of information security principles and practices as applied to systems including networks, servers, firewalls, antivirus, spam management, software and OS patch update protocols, filters, logging, intrusion and anomaly detection, e-Commerce and web site protection protocols.
• Experience with data loss prevention tools including logging, audit and intrusion detection systems.
• Experience with installation, configuration, and monitoring security system, and response to issues.
• Understanding of advanced security protocols and standards.
• Experience with software and security architectures and evaluation and development of approaches to solutions.
• Experience with proactive assessment of potential items of risk and vulnerability threats in the network.
• Experience with security practices of Intranet and Extranet.
PPR Career, Inc. offers a variety of employment opportunities and benefits. Please check out our website for additional opportunities.
Ask about our Employee Referral Program! We offer fees for any placement of referred candidates. Please inquire about details.
Related Jobs
- Systems Administrator posted 20 days ago.
- Sr Desktop Support Analyst posted 20 days ago.
- Report Developer posted 20 days ago.
- Senior Software Engineers (Multiple Opportunities) posted 3 months ago.
- Lead / SR Software Engineer posted 3 months ago.
