Miscellaneous Security Job Descriptions
Title: Project Manager with Security Focus
Job Objectives
Be responsible for working on and coordinating the completion of
security group related projects. Candidate will provide project
management level guidance to security group members. Will help act
as interface between other organizations for security group related
projects.
Primary Responsibility (Complexity/Scope)
- Help design and implement the future of information security
for the company and the industry.
- Provide technical leadership to others through project management
or ongoing consulting.
- Participate on cross-functional project teams within IT as well
as across the company.
- Work on projects of a diverse scope.
Job Requirements
Education/Experience
This position requires a BS/CS degree and 5-10 years experience
in supporting and managing projects. Must have basic networking
and Unix/NT skills.
Knowledge/Skills
Must have an in depth knowledge of managing projects of internetworking
systems andarchitectures. Must have previous experience with the
company equipment and software. Information Security background
is preferred.
Decision Making/Input
Identifies priorities of work to be performed both on a daily basis
as well as long term strategic projects. The capability to make
correct assessments of problems and to take the appropriate corrective
actions is critical. Will represent a corporate and global information
security team.
Problem Solving
Must detect and solve a wide range of difficult problems in an imaginative
and practical way through either project leadership and/or other
forms of technical leadership. Most problems are departmentally
related, but they are not constrained only to the work done in this
position. Should be able to work effectively in a cross-functional
environment.
Supervision Received/Freedom of Action
This position requires limited supervision. Due to the fact that
assignments at this level are very complex, independent judgment
is required with very little supervision.
top of page
Title: Director of Security
We are a dynamic startup organization providing Internet Services
and Solutions. We are building a company of outstanding business
and technical professionals that have the skill and drive to succeed
in today’s fast-paced Internet industry. We are seeking energetic,
ambitious and talented people to help us achieve our growth. We
offer a competitive compensation package as well as a rewarding
professional environment with a focus on respect, integrity, teamwork,
and superior customer satisfaction.
Description
In your role of Director of Security you will provide leadership
and guidance in establishing security and business continuity policies
and procedures for the company’s internal and external needs.
Risk management experience dealing with electronic threats and vulnerabilities,
privacy issues, physical security, and business continuity.
Requirements
Highest technical skills in some or all of the following: IP routing,
voice over IP, encryption, firewalls, intrusion detection systems,
PKI, VPN's, web filtering, identification, authentication, authorization,
accounting.
Hands-on experience with major security platforms for certification
authority, security management products, tools and offerings from
VeriSign, Entrust, Baltimore Technologies, Checkpoint, Raptor, ISS,
Cisco, Sanctum, SATAN, Axent, Network Associates, Ntcrack, L0phtCrack,
Destroyer, Netcat and equivalent products.
Experience with security forensic technologies Hands-on experience
with monitoring network and systems management processes and operational
procedures. Proven record of growing responsibilities, team-leadership
and supervisory skills. Good interpersonal, written, and oral communication
skills. Web hosting experience a must.
Educational Requirements
CISSP or equivalent
B.Sc. in Computer Science or equivalent
top of page
Title: Chief Security Officer
Reporting directly to the President, this position will require
overseeing and coordinating efforts across the company, including
Engineering, Network Infrastructure, HR, IT, Legal, and other groups,
to identify key corporate security initiatives and standards (for
example, virus protection, security monitoring, intrusion detection,
access control to facilities, and remote
access policies). It will also involve working with outside consultants
as appropriate for independent security audits.
Responsibilities
--Identify protection goals and objectives consistent with corporate
strategic plan.
--Identify key security program elements.
--Manage development and implementation of global security policy,
standards, guidelines, and procedures to ensure ongoing maintenance
of security.
--Assist with the investigation of security breaches and assist
with disciplinary and legal matters associated with such breaches
as necessary.
--Coordinate implementation plans, security product purchase proposals,
and project schedules.
Qualifications
--BA or BS in Computer Science, Information Management, or related
field. Masters or PhD a plus.
--Eight to ten years of progressive experience in computing and
security, including experience with Internet technology and security
issues.
--Proven ability as a member of a management team and is able to
communicate technical and security-related concepts to a broad range
of technical and non-technical staff.
--Ability to work and effectively prioritize in a highly dynamic
work environment.
--Experience with disaster recovery planning, testing, auditing,
risk analysis, business resumption planning, contingency planning,
as well as contract and vendor negotiation experience.
top of page
Title: Information Security Officer
The Information Security Officer designs, develops and implements
security changes and enhancements to the Information Technology
(IT) computing environments. The Information Security Officer
is responsible for determining appropriate security measures and
creating policies and procedures that monitor and control access
to system resources and data. The Information Security Officer
will update security standards as necessary and is responsible for
the prevention, detection, containment and correction of security
breaches.
Requirements
-Oversees the establishment, implementation and adherence to policies
and procedures that guide and support the provision of information
security services
--Conducts risk assessments and risk analysis to help the organization
develop security standards and procedures that support strategic,
tactical and operational objectives on a cost-effective basis
--Makes recommendations on appropriate personnel, physical and technical
security controls
--Manages the Information Security Incident Reporting program to
ensure the prevention, detection, containment and correction of
security breaches
--Participates in resolving problems with security violations
--Responsible for the content (and in some cases the delivery) of
information security seminars and training classes
--Coordinates the communication of information security awareness
to all members of the organization
--Certifies that IT systems meet predetermined security requirements
--Strives to maintain high system availability
--Works with vendors, IT associates, and user departments to enhance
information security
General Skills
--Good verbal and written communication skills
--A high level of integrity and trust
--Knowledge of security hardware and software products that comply
with current industry standards.
--Knowledge and understanding of technology-related state and federal
regulations
Professional Certifications
Certified Information Systems Security Professional (CISSP®) Or
Certified Information Systems Auditor (CISA®)
top of page
Title: Foundation Information Security Officer
Position Overview
Implements and supports information security initiatives as a focus
and resource for Foundation information security matters. Coordinates
Office of Information Security activities and manages staff.
Oversees, implements and monitors the National Industrial Security
Program and special security requirements levied by the Department
of Defense and intelligence community agencies.
Education/Experience/Job
Specifications
A four-year college degree is required. A Certified Information
Systems Security Professional rating is desired. At least
ten years of information security work experience is required with
both public and private sector experience preferred. The ability
to work effectively in a collegiate, consensus driven organization
is required as are demonstrated personnel and information security
program management skills. A working knowledge of all aspects
of information security is essential as is the ability to apply
this knowledge in an open network environment.
top of page
|
