Desired Skills and Experience
- Provides advice, guidance, and assistance to executive leadership. Creates, implements, and socializes new information security policy and standards to the enterprise.
- Provides specialist advice and assistance in the interpretation of information security policy and standards.
- Performs physical site assessments of business partners and provides peer review of work product and deliverables from site assessments. Performs release of information to third party business partners and identifies alternative methods for releasing information when applicable.
- Ensures that internally developed and commercially available business applications include adequate security controls.
- Designs, develops, delivers or oversees the delivery of classroom or computer based training regarding information security practices.
- Acts as a technical advisor for a variety of ad-hoc information security projects. May provide audit support.
- Bachelor’s degree required.
- 4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree.
- 6 or more years of relevant work experience.
- Advanced knowledge of relevant technical discipline.
- Experience developing enterprise level policies/standards/Controls for securing PCI/PII Data
- Experience supporting an Enterprise wide rollout of SDM tool suites such as Protegrity, Imperva etc
- Strong knowledge of Data Management & Governance policies, standards, processes & technologies
- Established automated processes and scanning technologies to continuously scan for sensitive data
- Established automated processes and technologies to continuously monitor for malicious activity
- Strong background in sensitive data controls to protect PCI, PHI, PII and IP data
Apply