"Alerted.org

10318 – Sr. Manager, Security

Location – Fountain Valley, CA (5-days Onsite)

PURPOSE:

The Sr. Manager, Security is the process owner for the development and implementation of a corporate-  wide information security program and ongoing activities to preserve the availability, integrity and confidentiality of Company information resources in compliance with the organization policies and standards. The Sr. Manager, Security consults and partners with other technical services groups and CBU (Client Business Unit) functional groups to enforce and verify compliance of security standards throughout the environment and advising advancements in information security technologies and related regulatory changes in legislation/standards that affect information security.

ESSENTIAL FUNCTIONS:

+ Documents the information security policies and procedures instituted by the organization's Information Security Committee and coordinates the activities with the committees.

+ Gathers and organizes technical information about the organization's mission goals and needs, existing security products, and ongoing programs in the information security arena.

+ Monitors changes in federal and state regulations and accreditation standards affecting information security, and to make recommendations on the need for policy changes.

+ Monitors compliance with the organization's information security policies and procedures among employees, contractors, alliances, and other third parties, and referring problems to appropriate managements of both HAEA and its clients.

+ Initiates, facilitates, and promotes activities to foster information security awareness and training within the organization.

+ Evaluates systems, assess risk, and assist with designing, developing, engineering, and implementing solutions for information security requirements.

+ Performs information security assessments and serves as an internal auditor/consultant for security issues.

+ Reviews all application and system development plans throughout the organization from the information security perspective and provide necessary recommendation or correction.

+ Monitors the internal control systems to ensure that appropriate access levels are maintained.

+ Involves and provides support with 3rd party audit process.

+ Prepares and manages the group budget.

+ Prepares and manages the various forms of security reports/status.

+ Develop Project Decks, Executive Summaries and other related documents.

+ Prepares the organization's disaster recovery and business continuity plans for information systems.

+ Attends conferences and training as required to maintain proficiency.

+ Performs other duties as assigned by management.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

REQUIREMENTS:

+ Bachelor's Degree or equivalent (with major course work in computer science or a related field).

+ Minimum of ten (10) years of progressive experience in computing and security.

+ Minimum of 5+ years’ experience in IT Management position

+ Experience establishing IS strategy & policy for a multi-faceted organization supported by multi-platform environments.

+ Experience with Security assessment and incident-response within a dynamic IT environment

+ Experience developing/implementing Disaster Recovery & Business Continuity Plans

+ Experience with auditing or evaluations of complex IT controls

+ Experience with Preventive, detective and corrective controls (Principles and techniques used in system compromise and denial-of-service incidents, as well as basic tools for detecting and preventing such incidents).

+ Strong knowledge of Computer security issues, requirements, trends, laws

CERTIFICATIONS:

Possession of, or ability to obtain, one of the following information security certifications or equivalent is desirable:

+ CISM (Certified Information Security Manager)

+ CISSP (Certified Information Systems Security Professional)

+ CISA (Certified Information Systems Auditor)

Salary Range - $153,330 - $219,252

Powered by JazzHR