Senior Lead Information Security Engineer
Company: Progressive IT
Posted on: January 14, 2019
The Senior Lead Information Security Engineer is a member of the Information Security Governance/IBRR team that is responsible for Global Data Protection and conducting International Business Risk Reviews (IBRR) to address security risks with new work moving to international locations, and working with IT to assess applications and verify Clean Room controls. The Engineer contributes to Global Data Protection program in a leadership role by establishing/improving processes to conduct risk assessments on proposed international activities; eliciting business requirements from multiple business stakeholders; converting business requirements to technical requirements and coordinating their implementation with IT Services, Network Services and other project teams; and facilitating meetings with the International Business Risk Review Council (IBRRC), if necessary. The successful candidate will have broad technical knowledge of current and emerging cyber threats, as well as security technologies and methods used to protect both corporate and customer-facing network infrastructures. This candidate must be able to work independently and as a team leader to develop and execute strategies and consult with internal clients on advanced security topics. In addition, the candidate must possess excellent oral and written communications skills and experience in presenting technical issues to a wide variety of audiences. Responsibilities:* Define the security direction for the organization, including systems, networks, user services, and vendor development efforts.* Consult with senior management and internal clients across multiple business units on complex security topics and policy interpretation.* Proactively identify potential security issues within the corporate and carrier infrastructure, and provide strategic direction to avoid risks to information assets.* Ensure reports and findings are delivered in a timely and appropriate manner to management, operations and executive leadership.* Develop relationships and engage with industry partners, Security Information Exchanges, and other groups to assess industry advances in technical security technologies. Assess security industry trends and provide consultation, recommendations, and implementation advice on emerging technologies.* Test potential security solutions to validate features and functions, partnering with other organizations in the resolution of interoperability issues to obtain successful integration of security solutions across all platforms.* Understand new laws and regulations and provide consultation, recommendations, and implementation advice to the organization. Make necessary adjustments to the Information Security Policy. Minimum Qualifications:* Bachelor's degree in Computer Science, Engineering, or related field, or 12+ years of equivalent experience.* Extensive experience in the administration, design and implementation of security controls including experience in applying methodologies and principles for all levels of security.* Exceptionally strong oral and written communication skills, collaboration skills, and experience in presenting technical issues to all levels of management, as well as non-technical staff.* Must possess current applicable professional/technical certifications, such as CISSP, GPEN, GWAPT, GISEC, CISM or CISA.* Experience with technologies, tools and process controls to minimize risk and data exposure.* Strong understanding of common computing attack vectors; information, host and network security hardening and requirements; networking protocols; common intrusion techniques; and common risk management concepts.* Broad technical knowledge of current and emerging technologies used both within the corporate infrastructure and in delivering customer facing services. Preferred Qualifications:* Master's Degree and 8+ years of relevant work experience.* Knowledge of information security industry and regulatory obligations (ISO 27001/27002, SOX, PCI, NIST Framework, FISMA, HIPAA, NACHA, and SSAE-16).* Technical credentials including vendor and / or technically agnostic certifications.* Experience in project management practices and/or PMP certification.* Experience in large Enterprise data centers and/or networks.
Keywords: Progressive IT, Denver , Senior Lead Information Security Engineer, Engineering , Denver, Colorado
Didn't find what you're looking for? Search again!