This position works closely with the Information Technology department and Business Units to perform various Information Technology security reviews, security architecture and vulnerability assessments.
Candidate must possess advanced knowledge of doing security risk assessments to assess and re-mediate the integrity of network connections, projects, applications or processes. This position will work to implement the Funds Information Security Policies & Standards.
Identify and manage information security risks to achieve business objectives and ensure compliance with ISO 17799 risk management framework using NIST 800-30 or other applicable risk management methodology
Perform risk assessments of policies, procedures, Business Continuity Planning, operational, physical, access control, asset classification, and compliance
Identify risks to Funds data with security architecture review and risk analysis processes, and develop remediation plans to mitigate the risks.
Assist in security awareness training program
Work with relevant personnel to evaluate new security technologies.
Other duties as assigned
Experience: CISSP certification required
A bachelor’s degree from an accredited program is required
A minimum of three (3) years of experience in the areas of Information Security and Information Technology.
Knowledge of ISO 17799; NIST SP 800:30 and other leading security standards
Vulnerability Assessments, Security Architecture Reviews experience required
Risk Management experience required
SANS and other InfoSec related certification a plus
Excellent troubleshooting and analytical thinking skills
Good written and oral communications skills
Excellent interpersonal and customer service skills
Self-directed, self-motivated, self-starter able to work with minimal supervision
send resume to:
To Apply to this job go to http://www.GadBall.com or click here
Saturday, November 10, 2007