This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Find jobs in Texas today!

To post a job, login or create an account |  Post a Job

  Jobs in Texas  

Bringing the best, highest paying job offers near you

previous arrow
next arrow

Well-Funded Enterprise Software Startup/Subsidiary – Confidential: Director, Information Security And Compliance

Well-Funded Enterprise Software Startup/Subsidiary - Confidential

This is a Full-time position in Dallas, TX posted June 9, 2021.

The Director of Information Security and Compliance is responsible for all aspects of security and compliance of company systems, processes and people.

In this role, the Director of Information Security and Compliance will be responsible for three teams; Information Security, Security Operations, and Compliance.

The Information Security team is responsible for securing all systems, software and hardware through development of policies and procedures that ensure all IT assets are designed and implemented in a compliant way.

The Security Operations team is responsible for the daily management of systems that support a secured environment such as identity Management, log review, and IDS review.

The Compliance team is responsible for providing oversight to the other security teams in addition to testing controls and measuring compliance of the individual teams and the overall organization.Additionally, the Director of Information Security and Compliance will be responsible for defining the strategy, tactics and vision of the security and compliance practice.Responsibilities Provide leadership and vision for information security and compliance within the organization.

Oversee development, implementation, and updates to the security policies, procedures, guidelines, and best practices used to ensure compliance.

Enhance the overall security posture of the organization by maturing the practice in a way that aligns with internal and external mandates, requirements, legislation, and best practices.

Build and maintain relationships with internal and external customers, IT staff, and leadership to help drive adoption and awareness.

Design and manage processes for detection, investigation, correction, and/or prosecution of information security breaches, violations, and incidents.

Manage risk assessments and risk acceptance framework in conjunction with development of mitigation and compensating controls.

Ensure ongoing compliance with external regulation and customer Information Security requirements.Requirements/Experience 10-15 years of experience in Information Security.

At least 5 years of experience managing Information Security or technical compliance teams.

Experience in building a security and/or compliance organization.

Experience working for a Financial Institution and knowledge of the mortgage lifecycle is a plus.

Must possess advanced knowledge of SaaS, ASP, Java, and .Net architectures.

Must possess knowledge of GLBA, FISMA, SOX, HIPPA, CAN SPAM,ISO 27001/27002, and SAS70 Must possess a high degree of integrity and trust along with the ability to work independently or as part of a team.

Strong communication skills, including the ability to communicate complex technical issues and concepts to non-technical staff Demonstrated ability to independently prioritize and manage competing work assignments in a time sensitive environment Experience in conducting internal and external risk assessments Knowledge of computer systems, networks, telecommunication, internet, intranet and extranet technologies.

Understanding of application and operating system hardening, vulnerability assessments, security audits, TCP/IP, intrusion detection systems, firewalls, etc

Please add your adsense or publicity code here (inc/structure/adsfooter.php)