Information Security Senior Advisor (Portfolio and Program Management Oversight)

About The Position

Requirements

• Requires BS/BA in information Technology or related field of study and a minimum of 8 years experience in systems administration and security aspects of information systems, access management and network security technologies, network communications, computer networking, telecommunications, systems development and management, hardware, software, data, and people; experience with multiple technical and business disciplines required; requires broad-based experience to plan and design highly complex systems; or any combination of education and experience, which would provide an equivalent background.

Nice To Haves

• Master’s degree in Computer Science, Information Technology, or related field
• Experience working in a large organization preferred.
• Advanced skills with MS-Office (specifically PowerPoint and Excel) and other related PC applications.
• Project management experience preferred.
• Financial, Insurance or Healthcare industry experience preferred.
• Relevant industry certification such as CISSP, CISM, CRISC or similar preferred.
• Understanding of audit/risk management methodologies and regulations preferred.

Responsibilities

• Supports Annual and Strategic planning for Information Security, partnering with key stakeholders, business groups and the Information Security leadership team to develop an integrated business plan
• Assists Information Security Chief of Staff by providing analyses, projections and reporting, synthesizing business and technical information to key stakeholders with high attention to detail
• Translates complex information into value-based, easy to understand formats including graphical displays
• Leverages organizational strategy to identify business talent needs and works collaboratively with the leadership team and Human Resources to facilitate effective workforce planning activities
• Help provide governance and oversight of Information Security vendors
• Develops and socializes a variety of Information Security guidance to help manage expectations, develop shared understanding and ensure consistency in approach across the organization
• Champions associate development and closely tracks the internal talent pipeline, including managing and maturing the OCISO onboarding program
• Evaluates directives, change orders, and projects to assess their impact on security strategic plans, budgets, and contract compliance
• Partners with leaders of initiatives to scale high value, technology-enabled solutions by identifying resources and risks, managing quality and cost expectations, and developing program/project tracking plans.
• Leads system and network architecture support for information and network security technologies; leads development and execution of risk assessment methodologies to fit business, regulatory, and technical environment considerations; leads the development of requirements, system architecture, and software design of security products and services.
• Leads the development of strategies for discovery, evaluation and response to new networking attacks; develops security incident response plans and strategies.
• Provides trouble resolution and serves as point of technical escalation on complex problems.
• Creates presentations and seeks IT management approval and acceptance of significant replacements or reconfigurations of major security systems serving the Enterprise.
• May be assigned to project teams for technical consultation to business partners and developers.
• Designs & engineers comprehensive access management and network security technical solutions based on business requirements and defined technology standards; works with architecture to update technology direction & strategy.
• Develops reports supporting strategy and direction for management.
• Capable of serving as technical merger & acquisition lead.
• Acts as a subject matter expert among peers, with manager and senior management.
• Must be capable of providing top-tier support for 5 or more of the information security technology common body of knowledge skill sets: 1) Access Control, 2) Application Security, 3) Business Continuity and Disaster Recovery Planning, 4) Cryptography, 5) Information Security and Risk Management 6) Legal, Regulations, 7) Compliance and Investigations, 8) Operations Security, 9) Physical (Environmental) Security, 10) Security Architecture and Design, 11) Telecommunications and Network Security.

Benefits

• merit increases
• paid holidays
• Paid Time Off
• incentive bonus programs
• medical
• dental
• vision
• short and long term disability benefits
• 401(k) +match
• stock purchase plan
• life insurance
• wellness programs
• financial education resources