About the position
Implements and supports security solutions and technologies to protect data/assets from unauthorized access, use, disclosure, destruction, modification, or disruption. Provides project leadership, security oversight, and risk management on security projects. Sets security design guidelines, frameworks, and models. Works to identify new security issues and risks and is involved in developing mitigation plans. Helps identify and document security objectives. Participates in projects that develop new intellectual property. Trains/mentors members of the team. Builds relationships and trust across the organization. Evaluates and recommends new and emerging security products and technologies. Works to develop and interpret security policies and procedures. Supports acquisition and vendor risk assessment due diligence. Leads the building, deployment, and maintenance of security tools utilized by the insider threat program. Proactively seeks solutions to mitigate risk and clearly communicate risks to the appropriate stakeholders.
Responsibilities
- Implement and support security solutions and technologies.
- Provide project leadership and security oversight.
- Set security design guidelines, frameworks, and models.
- Identify new security issues and risks.
- Develop mitigation plans for security risks.
- Document security objectives.
- Participate in projects that develop new intellectual property.
- Train and mentor team members.
- Build relationships and trust across the organization.
- Evaluate and recommend new security products and technologies.
- Develop and interpret security policies and procedures.
- Support acquisition and vendor risk assessment due diligence.
- Lead the building, deployment, and maintenance of security tools.
- Proactively seek solutions to mitigate risk.
Requirements
- 8+ years experience in an IT environment including service-oriented and IT architecture.
- 3+ years API, Micro Services and container security.
- 3+ years Data security and privacy.
- 3+ years working in Cloud Computing (AWS, Azure, GCP).
- 8+ years experience with information security technologies and administration.
- 2+ years of experience in IT infrastructure management.
- 2+ years demonstrated experience using techniques for protecting data stored in a SaaS environment.
- 5+ years demonstrated experience performing technical troubleshooting and technical documentation.
- 2+ years of experience working in IT systems management.
- 4+ years crafting technical designs that are clear and well thought out.
- 5+ years working in an Agile software development lifecycle and DevOps principles.
- 5+ years demonstrated team leadership experience leading 3-8 person teams.
- 5+ years experience in an environment focused on continuous improvement.
- Strong verbal and written communication skills.
Nice-to-haves
- CISSP, Azure, AWS, or GCP Certification.
- Dev Sec Ops.
Benefits
- Healthcare (medical, dental, vision)
- Basic term and optional term life insurance
- Short-term and long-term disability
- Pregnancy disability and parental leave
- 401(k) and employer-funded retirement plan
- Paid vacation (from two to five weeks depending on salary grade and tenure)
- Up to 11 paid holiday opportunities
- Adoption assistance
- Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year.
