Provide multi-system security software administration support. Design, implement and refine security monitoring applications and processes, as well as security testing methodologies. Provide guidance to and interpret results from security compliance and monitoring systems for other managers, auditors and executives. Monitor Security Systems and Services; -outside services for vulnerability and malicious activity alerts, -Internal suspicious activity event monitoring. Design, implement and support centralized user access, single sign-on, user provisioning and identity management applications. Identify critical information assets, assess threats and vulnerabilities impacting those assets and implement safeguard controls and monitoring. Execute risk assessments throughout the IT environment, including evaluation of effective controls within the application, remote access, mainframe, mid-range, distributed system and network environments. Actively track and monitor remediation efforts of vulnerabilities and process deficiencies identified during vulnerability scanning, risk assessments and audit testing. Function as team leader for staff assigned to security compliance remediation or as project manager during the rollout of new security products. Develop Security Policy. Provide maintenance support. Controls and maintains the information Security Policy Exception Process, including initial evaluation of exception requests, assisting in defining appropriate mitigating controls and providing recommendations to the Director of IT Security regarding the exception. Maintain an exceptions database and actively monitoring exception inventory. Function as team leader capable of managing 3-7 team members during security related incidents. Reinforce information security awareness and provide security training.
Experience: Bachelors Degree or equivalent; MBA preferred A minimum of 8 years related experience including a minimum of 3 years of experience in Information Security Extensive experience in deploying and maintaining eTrust Security Command Center, Audit, Access Control, Admin and eSSO software (CA Computer Associates) Proven Design and implementation of Identity Management solutions Experience in defining enterprise-level security practices Experience with LDAP Integration Strong knowledge of Windows server operating systems Working knowledge of UNIX (several versions) Project management skills Technical infrastructure and product management skills Business systems analysis skills Leadership skills Knowledge of Sarbanes-Oxley regulatory requirements Knowledge of the COBIT framework Communicate well both verbally and via written word Communicate with both business and technical users at all levels of the organization in addition to members, vendors, business partners and auditors Familiarity with security architecture design, security processes and controls Oracle and SQL security requirements and mainframe experience a plus CISSP preferred May be required to work off-hours and weekends as part of both, project work and emergency response duties To Apply to this job go to http://www.GadBall.com or click here