Vacancy expired!
- Promotes security and privacy as a business enabler through effective partnership with product, strategy and engineering teams.
- Works closely with project teams to fully understand business priorities and strategy.
- Reviews solution designs and identifies opportunities for security integration.
- Assigns risk-based security and privacy requirements to project teams.
- Ensures solutions are secure through participation in all phases of the lifecycle, from requirements gathering to design, then implementation, followed by validation.
- Works with project teams to identify and mitigate security and privacy risks.
- Leads cost-risk tradeoff discussions with the project teams, helping to decide how important and at what increased cost each security requirement can be justifiably implemented.
- Documents status of projects assigned security and privacy requirements including risks and exceptions.
- Influences product selection and negotiates security and privacy requirements with teams and vendors.
- Identifies security trends and relates to current and future needs of project teams as well as security and privacy standards.
- Establishes functional goals for improving security and privacy operations and then initiates and drives team members toward achieving those goals.
- 8+ years of experience working in security architecture, operations, design, or development.
- Strong experience across multiple security domains relative to Data Protection, IT Risk, Network Security, Application Security, Security Operations, and Identity and Access Management.
- Working knowledge of encryption concepts and implementation methods.
- Working knowledge of remote access technologies and implementation best practices.
- Knowledge of security operations including change management, incident management, configuration management, and vulnerability management.
- Ability to manage multiple engagements and prioritize workload.
- Strong problem-solving skills.
- Strong oral and written communication skills.
- BS/BA in a related discipline (i.e., Computer Science, Information Systems, Engineering, Business, etc.); and/or 8 years of experience in related field.
- At least one relevant industry certification - CISSP, CISM, CISA, etc.
- Big four consulting background or Fortune 500 company experience.
- Telecom/Cable or Wireless industry experience.
- Knowledge of IT and security frameworks, such as NIST or CIS.
- Experience with public cloud security architecture and solutions.
- Experience with container security architecture and solutions.
- Experience with integrating security with agile development teams.
- Experience with wireless security controls.
Vacancy expired!