Vacancy expired!
Information Security Officer
Primary Function
Establish, implement and administer programs and policies to comply with industry, regulatory and security standards. Oversees and reports results of the compliance and security efforts of the company and provides guidance for the Executive Management team on matters relating to information security and compliance. Work with the Human Resources and Compliance departments to provide ongoing training to all employees on industry standards, company policies, and security practices.
Major Duties and Responsibilities
Develop, initiate, maintain, and revise policies and procedures for the general regulatory compliance programs for the company as they relate to Information Security or Information Technology compliance standards. Serve as the primary contact for the company departments on all issues surrounding Information Security and Information Technology compliance standards.
Update the Executive Management team and corporate officers on policies and procedures as they relate to Information Security or Information Technology compliance standards.
Represent the company in matters relating to Information Security or Information Technology compliance standards with vendors, customers, and other external parties.
Conduct quarterly internal readiness audits for various regulatory audits.
Collaborate with the Human Resources department to provide ongoing training on industry standards, company policies, and security practices for all company employees.
Conduct quarterly review and update of information security policy and other relevant procedure and policies.
Work with Executive Management team to create and maintain a security-centered organizational climate campaign.
Other duties as required.
REQUIREMENTS
SKILLS:
Excellent skills and abilities with Microsoft office products, networking, Internet settings, hardware and connectivity.
Ability to handle multiple priorities at one time.
Ability to make independent decisions.
Ability to work in a team environment.
Ability to learn quickly in order to work efficiently and meet deadlines.
Strong background in industry best practices for business practices and methods, industry standards, information security and company policies.
Strong background in regulatory compliance frameworks NIST 800-53, PCI, etc
Expert level written and verbal communications skills.
Must be able to create documents for public presentation and corporate relations.
EXPERIENCE:
5+ of Information Technology, Information Security and/or Information Systems auditing experience.
2+ years supervisor or manager in a technical department or industry related field.
Must be able to pass federal background check.
EDUCATION / CERTIFICATIONS:
Associates degree or equivalent combination and/or experience in related field.
Industry information security certification (CISSP, CISA, etc) highly desired
Other industry standard certifications or technical trainings a plus.
