---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Manager, Information Security
Location: Philadelphia, Pennsylvania, US
Type: Permanent F/T
Closing Date: 04/29/2005
The IT Security Officer (ITSO) is responsible for the logical security of all
the computer systems and its branch organizations. He maintains close contact
with the Chief Security Officer
• Based on the IT Security Handbook & with CSO review the ITSO defines IT
security standards and guidelines as well as security relevant processes and
procedures. He provides appropriate tools, templates, checklists etc. in
support of CIO directives
• The ITSO regularly monitors compliance to the defined IT security
policies and guidelines
• The ITSO reviews and approves all projects, procurement as well as
architectural and operational tasks that can have an impact on the security of
the computer systems.
• The ITSO prepares and conducts IT Security briefings and awareness
programs for employees
• The ITSO serves as the IT Security main point of contact for the
branches
• The ITSO reviews & monitors various critical systems (as defined by the
CIO), distributes a summary report on a monthly basis as well as escalating
any relevant findings as needed
• The ITSO reviews and approves IT Security relevant changes to all IT
systems and applications
• Addresses and responds to Audit issues as they relate to security or at
the direction of the CIO
• Inclusion on all relevant projects to ensure security aspects are
planned for.
• Provides ongoing (frequency to be defined per application in accordance
with IT management requirements) review of access control reports and logs of
business critical systems.
• Provides evaluation of new technologies and the development of new
security standards
• Assists management with special IT requests/projects.
Consulting Services
• The ITSO organizes for external help to provide know-how and counsel if
no internal resources are available.
• The ITSO will provide consulting services to the CIO on methods for
improving IT security
• The ITSO will maintain the accurate IT security reporting
Project Work & Change Management
• The ITSO will be accountable to Management for the timely notification,
planning & documentation of the Change Management Process relating to all IT
Security changes as they effect the standardization of the IT environment
• The ITSO will be accountable for the establishment, maintenance and
consistency of local IT Security procedures and policies and with the
SLA’s set by the CIO locally in concert with the CSO or as required by
changes in US laws.
IT Policies & Standards
• The ITSO will comply with all local and group-wide IT Policies,
Procedures and standards. He is also responsible for ensuring that all ITS
Policies, Procedures and standards are enforced with respect to external
consultants, vendors & service providers
• The ITSO will be responsible for ensuring that all IT Security Policies
and Procedures are enforced with respect to internal employees
• The ITSO will be responsible for escalating all IT Security related
issues to the CIO & the CSO
• The ITSO will be responsible for meeting all SLA’s related to
his/her role
Planning, Documentation & Accountability
• Performance objectives will be agreed upon. Twice per year, the
performance of the ITSO will be assessed and reviewed. In addition, between
appraisals, an informal review is given twice a year. The ITSO will ensure that
all documentation is updated to reflect any changes in ITS policies, practices
or organization – this information must be kept current at all times
• The ITSO will ensure that his resources are planned 90 days ahead at
all times to provide the CIO with an accurate resource availability picture
• The ITSO will be accountable for tracking how many requests received by
ITS are subsequently escalated to a management level. The requests are to be
captured in monthly reports.
JOB REQUIREMENTS
---------------------------------------------------
Knowledge:
• Strong Financial Principles – “Know your customer”
• Conceptual and architectural/strategic skills with regard to IT Security
• Task planning and supervision skills
• Experience working in a fast paced environment
Technical Skills:
• Strong Microsoft Office
• Exchange
• Visio
• Symantec ESM
• Crystal Reports
• Firewall and TCP/IP networking
• ADS
• NT Domain Server
• UNIX
• Security standards
• CISSP
• MCSE
Competencies:
The ITSO Officer should demonstrate the following competencies:
• Excellent grasp of the English language
• High Level Communications and presentation skills
• Calm, rational, and organized approach to tasks when under pressure
• Effective time and task management
• Applies to the given standards, procedures, and tools to accomplish
work assigned
• Self driven
• Excellent communicator to get things done
• Excellent analytical skills
• Excellent oral and written expression
• Team player with the ability to integrate into a team
Other Pertinent Information
Preferred Experience:
• 7 years IT experience
• 5 years experience as security manager or equivalent
5+years of relevant experience ideally with company(s) known for high quality
in the area of IT. Candidate should have IT security experience. Ideal profile
candidate should be found in the financial service arena.
Education Required:
• BS or MS in Computer Science or related field
• MBA (not required but preferred)
Analytical Requirements:
• The ITSO must be well organized and must maintain a highly reliable and
structured approach in managing his tasks.
• The ITSO must approach issues with the perspective of others in mind
before taking action
Supervisory Responsibility:
• Nice to have but not required
Licenses/Certifications:
• CISSP (nice to have not required)
• CISM (nice to have not required)
• MCSE
Language Skills: (other than English)
• German (nice to have)
CONTACT
---------------------------------------------------
If interested please send resume in word format to jeff@altaassociates.com
Jeff Combs
Senior Recruiter
Alta Associates, Inc.
jeff@altaassociates.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
