Desired Skills and Experience

  • Manage and Improve Risk Assessment Process.

  • Own Security Policies (Application Development and Operational Security).

  • Ensure compliance of internal policies through departmental audits.

  • Manage the PCI Security Process, including management of the annual third-party audit.

  • Conduct Internal Application and Network Penetration Testing.

  • Manage metrics and monitoring as it pertains to security.

  • Conduct Security Training (Corporate and Engineering).

  • Review violation reports and investigates security exceptions.

  • Provides support to the business / IT staff for security related projects and issues.

  • Recommends and deploys additional security products and tools.

  • 5 years of Information Security experience
  • History of owning components of risk assessments
  • Familiarity with formulating or maintaining security policies and processes
  • Experience conducting security assessments and penetration tests
  • Working knowledge of a broad set of security tools and technology (Firewalls, Scanning tools, etc.)
  • Formal Security Training and Certification is highly preferred

  • Ownership and Accountability

  • Ability to quickly understand business objectives and risks

  • Root cause analysis

  • Autonomy

  • Strong Attention to Detail

  • High Level of Integrity

  • Clear Communication

  • Passionate about Security

  • Complete medical, dental, and vision coverage
  • Vacation/Holiday pay
  • Life, ADD and LTD Insurance
  • Flexible work hours
  • Formal training and certification opportunities
  • 401k program including matching
  • Great working environment and culture
  • Daily Catering
  • Bi-weekly massages