Vacancy expired!
- Serves as primary cyber-security threat expert keeping apprised of emerging and ongoing industry trends as well as the most likely strategies needed to mitigate the threats.
- Develop and maintain a company wide Information Security Policies and Procedures that mitigates risks.
- Prioritize and allocate security resources including tools correctly and efficiently.
- Develops key input into the development of cyber security strategies, employing existing and new resources required to mitigate the ever-changing threat landscape.
- Delivers and continuously improves the Information Security and Risk Management processes.
- Design and implement education programs focused on user awareness and security compliance.
- Perform comprehensive risk analysis of new and existing business initiatives and processes.
- Manage and monitor security vulnerabilities, threats and events in network and host systems, logs, and alerts.
- Establish, manage, and test Disaster Recovery Plan with a focus on preparedness for the recovery of business processes and systems that are interrupted by a cyber-security event.
- Develop strategies to handle security incidents and coordinate investigative activities.
- Act as a focal point for IT security investigations and makes recommendations based on findings.
- Manages the development and delivery of IT security standards, best practices, architecture, and systems to ensure information system security across the enterprise.
- Evaluates and completes third party vendor Security Risk Assessments as needed.
- Coordinate, schedule, and remediate required Network Security Audits and Penetration Tests and make recommendations based on audit findings.
- Other duties as assigned by the VP of IT
- Bachelor's degree (or higher) in Business Administration, Computer Science, or related field.
- 7 years' experience in overall IT security management operations and best practices
- At least 5 years of professional experience in IT security management at a senior level, with at least 3 years of recent experience as an lT Manager.
- At least 5 years' experience leading large transformational initiatives and major IT Security projects.
- Certified Information Systems Security Professional (CISSP) certification or equivalent experience.
- At least 5 years' experience in design and implementation of Disaster Recovery solutions and testing
- Experience with large scale IT projects with proven ability to identify, develop, negotiate, communicate, and resolve complex problems within multiple projects, while leading others to get results
- Ability to establish and build an information technology security practice from the ground up.
- Ability and confidence to take calculated risks in uncertain or ambiguous situations.
- Ability to develop strategic initiatives and oversee the development of long-term plans and proposals to support business objectives.
- Ability to challenge, convince and manage multiple business stakeholders.
- Ability to effectively drive business, culture, and technology change in a dynamic and complex operating environment.
- Strong business acumen and understands key financial drivers and dynamics related to growth and financial goals.
- Excellent organizational skills and demonstrated ability to manage multiple competing priorities and assignments.
- Excellent interpersonal skills and customer focused approach.
- Excellent verbal and written communication skills.
- Completion of one or more of the following certifications: MCSE, CISA, ITIL, CNE is a plus.
- Ability to communicate effectively with executives and management regarding technology concepts, plans, operations, and requirements.
- Previous experience leading security organizations with a law firm
- Hands on experience achieving SOC2 Type II audit requirements for Security, Confidentiality, Availability and Privacy
- Experience with NIST Standards and application within a corporate environment
Vacancy expired!