Global IT Security Manager
Job Reference Number
14-0228
Job Type
Professional
Schedule
Full Time
Job Location
North America; United States
Job Summary
Cardno is seeking a Global IT Security Manager to manage and take responsibility for the development of suitable IT security measures, standards, controls and practices across the organization. The Global IT Security Manager will work directly with the infrastructure teams for implementation of these programs/processes. This position will also work with the IT leaders in developing user education programs and raising the awareness of IT security vulnerabilities and practices across the business.
Essential responsibilities include, but are not limited to:
> Work with the IT leadership to develop a corporate-wide IT security governance approach, guided by industry best practices. Also participate in the development and communication of appropriate IT security standards. This framework needs to be developed with the wider business community and be fit for purpose and cost effective
> Participate in the development of relevant IT security policy documents to articulate the minimum and preferred IT security standards and procedures required to be met by all divisions, including relevant legal and contractual requirements across the company's geographical reach.
> Working with the IT leadership, provide guidance and recommendations in the selection, funding, implementation and adoption of appropriate IT security controls, tools and practices across the organization
> Develop and perform audits, guide teams and govern periodic reviews across all disciplines
Assist as needed in due diligence/assessments of potential M&A companies
> Work with IT leadership to develop and implement a user awareness program to articulate the staff's responsibilities with regards to IT security and company practices
> Work with the business / IT leaders to develop and introduce a data classification scheme to be applied to all Cardno divisions
> Assist in the education of all staff in identifying sensitive data and the procedures to ensure it is handled and protected appropriately
> Review, test and recommend adaptations to existing security controls to ensure they are adequate for the information asset they are protecting
> Perform testing of existing security controls and practices for vulnerabilities
> Remain up to date with IT security risks and trends and provide advice to senior management regarding new IT security threats.
Essential responsibilities include, but are not limited to:
> Work with the IT leadership to develop a corporate-wide IT security governance approach, guided by industry best practices. Also participate in the development and communication of appropriate IT security standards. This framework needs to be developed with the wider business community and be fit for purpose and cost effective
> Participate in the development of relevant IT security policy documents to articulate the minimum and preferred IT security standards and procedures required to be met by all divisions, including relevant legal and contractual requirements across the company's geographical reach.
> Working with the IT leadership, provide guidance and recommendations in the selection, funding, implementation and adoption of appropriate IT security controls, tools and practices across the organization
> Develop and perform audits, guide teams and govern periodic reviews across all disciplines
Assist as needed in due diligence/assessments of potential M&A companies
> Work with IT leadership to develop and implement a user awareness program to articulate the staff's responsibilities with regards to IT security and company practices
> Work with the business / IT leaders to develop and introduce a data classification scheme to be applied to all Cardno divisions
> Assist in the education of all staff in identifying sensitive data and the procedures to ensure it is handled and protected appropriately
> Review, test and recommend adaptations to existing security controls to ensure they are adequate for the information asset they are protecting
> Perform testing of existing security controls and practices for vulnerabilities
> Remain up to date with IT security risks and trends and provide advice to senior management regarding new IT security threats.
Key Responsibilities
Please see above
Other Requirements
Minimum Qualifications:
> Equivalent of Bachelor's degree in Information Technology or technical related field
> Five or more years of experience in a similar IT security role
> Five or more years of relevant experience in Microsoft server technologies
> Extensive knowledge of networking protocols, products and vulnerabilities
> Extensive knowledge of IT security frameworks (eg. ISO27000), standards, best practices and industry bodies
> Experience in writing technical and/or user documentation
> Experience in working with business leaders to promote fit for purpose security practices
Desirable Qualifications:
> Certification with ISACA, or similar industry body (eg. CISM)
> Relevant experience with IT backup and disaster recovery best practices
> Previous experience in writing and/or implementing a corporate IT security policy
> Previous experience in identifying business requirements
> Fluency in Spanish
Personal Attributes:
> Demonstrates personal integrity and maturity
> Honest and reliable person with an approachable personality
> Logical, precise and thorough, with good analytical skills
> Results focused
> Communicates effectively with a range of people
> Cultivates productive working relationships within and across team environments
> Self-starter who applies individual initiative to get the job done
> Ability to travel regularly and at short notice, both domestically and internationally
*Please Note that selected candidates will be required to pass a drug, background and reference screening. Cardno is an equal opportunity and affirmative action employer EEO/AA/M/F/V/D
> Equivalent of Bachelor's degree in Information Technology or technical related field
> Five or more years of experience in a similar IT security role
> Five or more years of relevant experience in Microsoft server technologies
> Extensive knowledge of networking protocols, products and vulnerabilities
> Extensive knowledge of IT security frameworks (eg. ISO27000), standards, best practices and industry bodies
> Experience in writing technical and/or user documentation
> Experience in working with business leaders to promote fit for purpose security practices
Desirable Qualifications:
> Certification with ISACA, or similar industry body (eg. CISM)
> Relevant experience with IT backup and disaster recovery best practices
> Previous experience in writing and/or implementing a corporate IT security policy
> Previous experience in identifying business requirements
> Fluency in Spanish
Personal Attributes:
> Demonstrates personal integrity and maturity
> Honest and reliable person with an approachable personality
> Logical, precise and thorough, with good analytical skills
> Results focused
> Communicates effectively with a range of people
> Cultivates productive working relationships within and across team environments
> Self-starter who applies individual initiative to get the job done
> Ability to travel regularly and at short notice, both domestically and internationally
*Please Note that selected candidates will be required to pass a drug, background and reference screening. Cardno is an equal opportunity and affirmative action employer EEO/AA/M/F/V/D
Employee Benefits
Cardno offers a competitve salary and benefits package.
Contact
Any questions regarding the role can be submitted via the online form once you click apply
Post a Comment