| Duties & Responsibilites : | The client is seeking qualified candidates for the position of Information Security Officer – Senior Leadfor the Office of Information Technology.
Job Description:
The Information Security Officer (ISO) – Senior Lead is responsible for advising and guiding a junior level Information Security Officer in the following:
- Establishing and maintaining an organization-wide security management program to ensure that information assets are adequately protected;
- Collaborating with business units to implement practices that meet defined policies and standards for information technology; and
- Overseeing a variety of IT risk management and investigative activities.
Job Responsibilities:
Under broad supervision, the Information Security Officer – Senior Lead will guide the junior level ISO with:
1. Serving as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies.
2. Identifying, evaluating and reporting information security risks in compliance with regulatory requirements and alignment with and in support of the risk posture of the enterprise.
3. Performing risk assessments and analysis to identify areas of risk and developing information security measures and controls for mitigation.
4. Developing, implementing and enforcing IT system security policies, programs, plans, projects and initiatives to ensure that information systems are maintained in a fully functional and secure mode.
5. Planning, implementing, managing and coordinating security measures for information systems to regulate access to computer data and prevent unauthorized modifications, destruction, or disclosure of information.
6. Managing/monitoring use of data files and regulating access to safeguard information in computer files.
7. Developing and implementing information security disaster recovery and information security continuity plans.
8. Communicating to leadership through oral and written reports and presentations.
9. Utilizing knowledge of state and federal regulatory laws and standards to safeguard sensitive information.
10. Serving as subject matter expert and representative on all issues related to agency information security.
11. Developing corrective action plans to mitigate audit findings and from conception through total implementation.
Required Qualifications:
Completion of a Bachelor's degree from an approved accredited college or university in computer science or a related field and five (5) years of directly related management experience OR Seven (7) years of directly related management experience OR One (1) year work experience at the most immediate lower level position.
Preferred Qualifications:
1. Bachelor’s degree from an accredited college or university in information technology, computer science, information assurance or a related field and five (5) years of information technology experience, one of which was in information security or information assurance.
2. Certified Information Systems Security Professional (CISSP).
3. Has knowledge of network, operating system, database, and application security.
4. Must have high level of interpersonal skills to handle sensitive and confidential situations.
5. Demonstrated experience with an organization with multiple business units with remote locations.
6. Experience working in an outsourced environment. |
