Driven by our passion for people, our IT Security Director Translates the security risk requirements and constraints of the business into technical control requirements and specifications, as well as develops metrics for ongoing performance measurement and reporting.
Ultimately, we bring people together. Whether it be our clients, their customers, our colleagues or our non-profit partners—we can’t resist the fun of working with people. Each connection, each relationship matters. To STRIVE to be a part of something greater is in our DNA—and we don’t use the word “strive” lightly. It embodies what we value.
Qualifications:
Licenses or certifications CISSP, CISM, CRISC, CISA or CPA
Previous law enforcement experience
Minimum five years’ work experience in information technology and/or information security
Leading and managing Information Security Engineering and Operations
General security background in the use of cryptography, network/systems/physical security, authentication, authorization, and usability.
Superb communication, interpersonal, and investigative skills.
Managing a global team of employees and/or contractors (7-10 years)
Governance, Risk & Compliance experience (3-5 years)
Experience in budgeting and organization fiscal responsibility (3-5 years)
Responsibilities:
Translates the security risk requirements and constraints of the business into technical control requirements and specifications, as well as develops metrics for ongoing performance measurement and reporting.
Enforces authorized access by investigating improper access; revoking access; reporting violations; recommending improvements.
Conduct audits with internal and external auditors and makes recommendations as needed to improve compliance and the security culture.
Be fully accountable for the management, maintenance, and configuration of endpoint security protection, intrusion prevention/detection systems, vulnerability management systems, data loss prevention, and others.
The Security Director must contribute to the design and approval of a comprehensive security strategy. The strategy will account for the end-to-end lifecycle of information security operations, including: Evaluating the IT threat landscape, devising policy and controls to reduce risk, and leading auditing and compliance initiatives.
The Director must ensure that their organization is adaptable to evolving compliance regulations including PCI, GDPR, CCPA. The Director will develop the requirements for all interested parties and coordinates with the data protection initiatives in compliance with these requirements as per the enforceable regulations.
Researches, drafts, and drives process change for policy and security solutions to better serve our customers.
Builds relationships with key partners and works with those teams to implement, enforce, and communicate our policies in a clear, objective, and patient way. Drives decisions and implement key changes to improve policy performance over time.
Handle escalations for complex cases and will participate in calls with clients.
Researches and recommends controls and configurations aligned with security policies and legal, regulatory and audit requirements.
Acts as the primary contact for executives and senior management (internal and external), providing guidance and advice related to technology controls, regulatory compliance and streamline the efforts to mitigate potential areas of unacceptable residual risk
Facilitates the approval of effective, sustainable, and strategically aligned remediation solutions that mitigate identified risks and enable compliance and operational excellence.
Provides oversight on issue identification process, intake, and analysis process for significant technology control deficiencies and risks, and oversees the process to bring closure to the deficiencies.
Salary & Benefits:
The compensation package for this position includes a competitive base salary commensurate with experience, as well as a comprehensive benefits package of medical, dental, short/long term disability, life insurance, personal time off, and a 401K plan.
Inktel is proud to be an Equal Opportunity Employer and Drug Free workplace. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability.
#LI-AR2
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)