**************************************************************
JobCircle.com is a regional job board serving all industries
and occupations in the PA, NJ, DE, NY, MD, and DC areas.

We offer a regional job board, online learning, and regional
job fair events for jobseekers who live in our areas of focus.

To Learn More:

Job Board: http://www.JobCircle.com?source=ng
eLearning: http://www.JobCircle.com/courseware?source=ng
Job Fairs: http://JobCircleJobFairs.com?source=ng

**************************************************************

Job Title: Information Security Officer
Job Location: NY: New York
Pay Rate: $150 k /year +
Job Length: full time
Start Date: 2008-09-11

Company Name: Synergistic IT
Contact: Carlos Pinzon
Phone: 732-452-3832
Fax: 973-701-6987

Description: Required Skills / Experience: Security audits (ISO 17799), intranet/internet/extranet security, intrusion detection, firewalls, senior security manager



Presitigious global company looking for an Information Security Officer. Coordination of a global team through a matrix reporting relationship, the role holder's global responsibilities will include:



* Advocate and promote information security and privacy standards, policies and procedures;


ensure that these artifacts are disseminated, understood and implemented across all business


units.



* Participate in the development of the enterprise security policies, standards, and procedures.


To that end, employee may be required to research and evaluate new technologies, both directly


and through team-based approach where appropriate; author product evaluations, standard


recommendations and procedures.



* Define and implement a risk-based approach to identifying, monitoring, measuring and


reporting various types of information security risks.



Liaise with the corporate Information Security Group and other groups in the enterprise to


ensure a common framework is in place across all business units



* Identify and prioritize security risks and recommend mitigating controls (including, but not


limited to source code controls, password controls, virus protection, remote access, identity


management).



* Define and deliver global security education program to improve overall awareness of security


policy and individual employee responsibilities.



* Define, identify and classify critical information assets, assess threats and vulnerabilities


regarding those assets and implement safeguard recommendations. Develop and manage the


information classification process.



* Consult with business units regarding their business and technical plans to ensure that


information security issues are addressed at an early stage.



* Review new facilities, applications and/or technology environments during the development or


acquisitions process to ensure compliance with corporate security policies and directions.


Perform security assessments (based on BS 17799) of external vendors and service providers.



* Manage and coordinate the execution of information security and infrastructure corporate


initiatives across all the business units. Such initiatives include: next generation network


infrastructure, next generation messaging, MS Active Directory, identity management, data


classification/encryption and host intrusion prevention.



* Provide governance for the identification, validation and remediation of information technology


controls required by Sarbanes-Oxley and Graham-Leach-Bliley



* Oversee the development, implementation and testing of business continuity and disaster


recovery plans across all business units



Requirements:



* 8 years of relevant security experience in a corporate or business environment, of which at


least 3 years has been in a senior/management role.



* Extensive experience in network architecture design and analysis



* Experience with a CTO/CSO level reporting relationship. Must have experience at the senior


level overseeing information security within a similar organization in financial services.



* Experience in a diverse, multi-region, cross-functional environment with matrix reporting


relationships



* Expertise in intranet/internet/extranet security, intrusion detection/prevention and firewalls



* Experience in security audits (ISO 17799), vulnerability assessments and risk mitigation,


identity management, and data encryption



* Expertise in Windows/Active Directory, UNIX, networking, telecommunications and internet


technology



* Knowledge of Mainframe, AS400, and Novell Netware/OES



* Excellent interpersonal skills including demonstrated ability to influence others with credibility



* Ability to articulate highly technical information into real world business impact at a senior


management level and, conversely, ability to translate senior management business initiatives


into actionable technical designs.



* Presentation skills



* Ability to multitask and adapt quickly to changing priorities



* Negotiation and vendor management skills



* Experience driving the development of security standards, policies, business processes, and


articulating the value of security programs and initiatives



* Holder of certifications in any of the following areas is a strong



plus: CISSP, CISA, CISM, GISO, GCIH.

For FASTEST PROCESSING of your resume, please visit http://www.jobcircle.com/classifieds/1565692.html?source=ng to apply online.

**************************************************************
For fastest processing of your resume, this employer asks that
you apply to this job using the URL above.
**************************************************************