Job Description :
Knowledge, Skills, Education, Experience, and Competencies:
4 year college degree in a technical discipline or 10 year equivalent practical experience;
Applicable industry recognized security or technical certifications
Must be able to drive security and create and defend security position within project teams
Must be able to communicate effectively orally and written to Executive Management
Demonstrated analysis, planning, design, engineering and implementation experience of appropriate security controls within solutions delivery
Ability to design and review network designs for perimeter and internal environments
Detailed knowledge of:
firewalls, network routing, Internet Security and Virtual Private Networking
cryptographic systems and algorithms, key management and practices
infrastructure security including Windows/Linux/Unix systems, Oracle and SQL databases
operational security including access controls, data privacy, monitoring and logging and availability requirements that meet corporate Business Continuity strategies
Knowledge of regulatory requirements, security standards and compliance issues (FFIEC guidelines, Sarbanes Oxley, GLBA, ISO 27001, CobiT v4.0, and Payment Card Industry Data Security Standard (PCI DSS.
Experience with root cause analysis, risk mitigation, security assessments, analysis of security threats, trends and architecture preferred.
In addition to security, proficient in other IT control areas (i.e., change management, SDLC, and Agile Operations
Strong project management (and time management) skills required. Ability to work on numerous projects/activities simultaneously. Ability to communicate effectively in a project environment and articulate/defend security positions.
Proven interpersonal skills and ability to take a leadership role. The ability to communicate with management and peers to build and sustain cohesive relationships.
Superior attention to details.
Able to work well with and communicate effectively with all levels with the IT Organization.
Able to quickly grasp the big picture, yet remained focused on coordinating tasks at the detailed level
Industry security certifications preferred (CISSP, CISM, CISA, CCNA etc)