Director, Technology Security Standards & Risk Assessment Job in Columbus, Ohio US
PURPOSE:
Responsible for the development and maintenance of the Company’s global enterprise technology security standards. In addition this role will perform, monitor and report technology risk assessments for the Company.
ESSENTIAL ACCOUNTABILITIES:
Essential Accountability
- Develop and maintain technology security standards for systems, networks and devices. Develop actions plans in case of security breach.
- Create and monitor risk assessment methodology for applying risk standards, monitor adherence to security standards, and devise tests to ensure security breaches do not occur.
- Establish risk metrics for reporting to Segments and Senior Management
- SIM managing real-time security status of Company systems, networks and devices in partnership with 3rd party vendor. Responds to breaches in security.
- Communicate standards to appropriate bodies for implementation
- Communicate standards to Company user population
- Periodically audit business partner delivery team to ensure security standards are being followed
- Establish communications plan for reporting risk assessment to appropriate parties
Percent of Time
30%
20%
20%
10%
5%
5%
5%
5%
DIMENSIONS:
- Perform monitor and report technology risk assessment globally for 5.000 + users and 5,000 + devices
KNOWLEDGE EXPERIENCE:
- Bachelor’s degree in Computer Science, Engineering, related discipline, or equivalent, 10 to 12 years of experience in IT, with a minimum of two years in Infrastructure and Operations architecture, and 5 years hands-on risk assessment methodology.
- Demonstrated track record of large scale security standards creation and implementation
- This senior position requires a comprehensive knowledge of technology options, understanding of the Company’s markets, and experience working effectively with all levels of the organization,
- The position requires strong technical, facilitative skills, development experience, business management, investment knowledge, marketing, communication and interpersonal skills.
- Comprehensive knowledge of problem analysis, structured analysis, and design and programming techniques
- Strong analytical and conceptual skills; ability to create original concepts/theories for various projects
- Ability to analyze project security needs and determine resources needed to meet objectives and solve problems that involve remote and elusive symptoms, often spanning multiple environments in a business area
- Strong interpersonal skills, including teamwork, facilitation, and negotiation
- Strong understanding of network, platforms, and software architecture and risk associated with use
- CISM (Certified Information Security Manager), certification desired
February 28, 2007
• Tags: Director, Ohio Us, Technology Security Standards & Risk Assessment Job in Columbus • Posted in: General