Entrust Datacard is seeking an individual to help support Information Security in the areas of Security Governance, Risk, Compliance and Policy across the organization. This position works as part of a security team responsible for ensuring that the company's information resources are secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to users in a timely fashion. This position demands an organized, action oriented team player with the ability to prioritize daily work and support on multiple initiatives simultaneously; strong communication and customer focus is required.
Provide support for IT projects, identifying risk specific to the project and actions necessary for remediation
Supports the development, implementation, and management of security policies and procedures to ensure they remain aligned with business objectives and meet regulatory requirements
Conduct security risk assessments and IT audit, and manages risk tracking and remediation
Track audit observations/action items and provide a Plan of Actions and Milestones (POAM) for corrective action(s)
Research information security standards; conduct system security and vulnerability analysis and risk assessments across the corporate IT landscape
Act as a conduit for project related security requests to ensure requests meet approved design
Familiar with ISO 27001:2013
Assist Information Security team define information security strategies and procedures
Understand and articulate information security strategy, policy and procedures and their implications to the organization.
Monitor the implementation of mitigating controls and their impact in reducing security risk scores
Validate policies/standards and procedures with focus on identifying and remediating gaps in policy and procedures and inconsistencies across the organization
Update job knowledge by tracking and understanding emerging security practices and standards
7+ years related experience in Information Security Risk Management
Experience with risk assessments, internal controls, business process and internal IT control testing or operational auditing
Experience conducting Business Impact Analysis and Threat Risk Assessments
Excellent communication and written skills along with experience preparing reports for senior executives
Proven understanding of Enterprise Network devices (i.e. routers, switches, firewalls)
Proven understanding of Operating platforms (i.e. UNIX , Linux and Microsoft)
Proven understanding of results from the following set of tools, to include but not limited to: NESSUS, WebInspect
Experience preparing and testing IT Contingency Plans
Familiarity with security industry standards (ISO 17799, ISO 27001:2013, NIST 800 series, etc.)
Strong organizational skills
Keen attention to detail
Bachelor’s degree in Information Systems, Computer Science
Experience with eGRC tools and processes
SSL Certificate knowledge
Risk related certifications (e.g. CISM, CISA, CRISC, CISSP, CIPP) a plus
About Entrust Datacard:
Our growing company relies on curious, dedicated and innovative colleagues to anticipate the future and provide solutions for a more connected, mobile and secure world. Entrust Datacard technologies and expertise help government agencies, enterprises and financial institutions in more than 150 countries serve and safeguard citizens, employees and consumers. Each year, our solutions secure billions of transactions — and every day, our technologies issue and manage more than 10 million secure identities. How do we do all of this? Together.
Join us. Together we’ll create solutions for a more connected, mobile and secure life.
For more information, visit www.entrustdatacard.com. Follow us on Twitter, YouTube and LinkedIn.
Entrust Datacard Corporation is an EOE/AA/Veteran/People with Disabilities employer.
NO AGENCIES, NO RELOCATION
How to Apply
Please apply directly to the link below.