Previous Job
IT Security and Compliance Solutions, Manager
Ref No.: 17-03208
Location: San Rafael, California
Position Type:Direct Placement
Start Date: 11/06/2017
IT Security and Compliance Solutions ManagerThis is a "hands-on” role with responsibility for Security-related systems required to maintain overall Information Security posture. The role requires an individual with a strong technical background to deploy and administer enterprise information security for endpoints, network, data, and identity & access management. The role will act as an empowered representative of IT ensuring security measures are incorporated into strategic IT plans and that service expectations are clearly defined.
The role will also be responsible for working with business and IT stakeholders to balance real-world risks with business drivers. The ideal candidate must be able to communicate IT Security risk requirements while balancing business constraints for right sized technical solutions.
Primary Responsibilities Include:
Works with business users and IT support teams to research and resolve issues or questions related to Information Security.Designs, builds, and implements changes to the information Security services, as needed to meet the changing needs of the organization.Coordinates and collaborates with other teams, both in and out of IT, to make sure good Information Security practices are designed and followed. Collects and publishes monthly metrics to produce the Information Security and Compliance dashboard.Manage the patching and system upgrades for all Information Security systems.Manage information security vendor relationships. Participates in periodic audits of Information Security practices.The Security and Compliance Solutions Manager will report to the Director of IT Security and Compliance.
Technical Requirements: Extensive expertise with endpoint security systems and processes such as Bit9, Carbon Black, Palo Alto WildFire, Microsoft SCEP, and TrendMicro AV.Expert knowledge with security processes and practices related to firewall and server configuration, system hardening, and security management.Expert knowledge maintaining security for email messaging systems and relays, with a focus on Microsoft Exchange-based messaging and related tools.Expert knowledge of security incident management and response, including use of SIEM tools such as Exabeam, Splunk, SolarWinds, and similarExpert knowledge of Information Security principles, forensics, and incident response.Expert knowledge of NIST Cyber Security Framework, PCI, SOC, ISO/IEC and similar security standards, and practical application of those standards to solutioning.Experience with network access control implementation and management.Experience with Identity Access Management Applications - Oracle IAM and Saviynt expertise a plus
Education and Other Professional Qualification Requirements:
Provide a high standard of customer service and follow through for support requests and escalations.Highly effective communicator, who is experienced with communicating complex security items to a non-technical audience.Provided support for other offices, including support for offices in Europe, Asia, and South America.Ability to support a 24x7x365 operation, including participation in monthly maintenance patching and updating activities.Bachelor's degree in information systems, or equivalent work experienceCertified Information Systems Security Professional (CISSP) or equivalent security-related certification a plus.
Security Clearance Required: No
Visa Candidate Considered: No
Candidate Details
2+ to 5 years experience
Seniority Level - Mid-Senior
Management Experience Required - No
Minimum Education - Bachelor's Degree
Willingness to Travel - Occasionally