Search Jobs
Find your next opportunity today.
Prosum
https://prosum3.wpengine.com/wp-content/uploads/2020/03/JB-Square-200x200-1.png
http://www.prosum.com
http://www.prosum.com
true
up to $180k
KEY JOB ELEMENTS:
KNOWLEDGE / EXPERIENCE:
Director of Information Security
4978 Santa Anita Ave , Suite 205 Temple City, CA 91780 US
2022-09-28
2023-04-29
Employment Type:
Perm
Job Category: Security
Job Number: 23189
Job Description
up to $180k
KEY JOB ELEMENTS:
- Spearhead a corporate-wide I.T. Risk & Compliance Program.
- Engage in contract review and negotiations for compliance with legal and policy obligations.
- Responsible for the design and execution of Corporate Vulnerability Management & Incidence Response Program.
- Oversight for vulnerability analysis and management process, which includes managing vulnerability scanning/reporting process, SIEM systems and log management systems.
- Provide Leadership for alert monitoring security tools and services, investigate, respond, and escalate as appropriate vendors, and IT system/security administrators.
- Build and maintains an effective evidence and metrics-based culture to measure program and process effectiveness.
- Promote awareness of security and compliance working with IT.
- Participate w/IT Security & Compliance Leadership team to provide oversight for incident response.
- Support Business Development RFPs and vendor risk assessment.
KNOWLEDGE / EXPERIENCE:
- Bachelors Degree in a technology-related field required.
- 5+ years of demonstrated experience in an information technology, information security, or network management.
- Demonstrated leadership experience working in a position that requires a high-degree of technical operational and service skills with a proven commitment to promoting and maintaining a service-oriented culture.
- Experience in supporting computing platforms running Windows-based and Linux-based operating systems.
- Experience in managing and/or securing systems and infrastructure in an IaaS cloud platform such as Amazon AWS/Microsoft Azure.
- Ability to quickly and accurately aggregate, analyze, and review large volumes of technical and non-technical information to support simultaneous assessments for audits, compliance, vulnerabilities, risk analysis, incidents, investigations, & etc.
- Familiarity with regulatory requirements, standards, guidelines such as PCI DSS, HIPAA, SOX, OWASP, SOC 2, & etc.
- Familiarity with control frameworks such as MITRE ATT&CK, NIST, COBIT, ISO27001
- Relevant certification CISA, CISM, PMP, AWS/Azure certifications.
- Ability to debug complex technical problems with modern computer operating systems, applications and networks.
- Ability to manage, maintain and motivate technical and non-technical staff members.
