Information Security and Compliance Associate Director

Alpharetta, GA 30004

Posted: 01/10/2019 Employment Type: Direct Hire Industry: Other Area(s) Job Number: 51896

Information Security & Compliance Associate Director

Job Overview

The Information Security and Compliance Associate Director is responsible for establishing and maintaining an enterprise-wide and globally oriented information security program to assure information assets are adequately protected. The Information Security and Compliance Associate Director is responsible for the creation and maintenance of enterprise-wide information security policy and establishing and operating IT security technology.  He or she is responsible for building an accountable, information security-conscious culture and a system security infrastructure built on high quality standards backed-up by effective operational procedures as well as regular status monitoring and reporting activities.


This position requires a leader with strong management skills, a detailed working knowledge of information security technologies and familiarity in leading IT security organization to achieving security compliance for a diversified global organization (PCI, HIPAA, and SOX). This position serves as the process owner of all ongoing activities related to the availability, integrity and confidentiality of company data including information supplied by customers, business partners, and contractors.  Proper protection of such data shall be prescribed through the organization’ s information security policies and standards.


Principle Accountabilities

 
  • Develop, publish, and maintain comprehensive information security standards, policies, procedures, and guidelines including data classification and protection (including Data Loss Protection mechanisms) as well as development and execution of an information security training and awareness program
  • Draft and propose the enterprise-wide information security strategy and action plans based on enterprise-wide risk assessment and gap analysis. Thus, identify and propose key information security program priorities, initiatives, practices, and tools.
  • Provide guidance (e.g., information security risk severity assessments, relative cost benefit analysis, etc.) and recommendations regarding prioritization of system security infrastructure investments that mitigate risks, strengthen defenses, and reduce vulnerabilities.
  • Develop the requirements for, and a Standard Operating Procedure covering, information security incident response, and executing such response in the event of an information security event with timely update reporting.  Understand potential and emerging information security threats, vulnerabilities, and control techniques and communicate this information to appropriate team members.
  • Collaborate with the IT teams to ensure information security risks in both ongoing and planned operations are properly considered.
  • Conduct regular and ongoing monitoring of and reporting on enterprise-wide compliance with information security and IT control standards and policies. This includes coordinating the use of external resources involved in the performance of security testing, e.g., penetration tests, vulnerability scans.
  • Establish requirements for, and overseeing operation of, an enterprise information security architecture and infrastructure that includes Security Information and Event Management, Network, and Host Intrusion Detection/Prevention Systems, Vulnerability Scanning and Penetration Testing.
  • Establish security metrics, evaluating results, and reporting them to senior leadership in the context of how they affect risk.
  • Oversee the security of applications and data bases to ensure applicable requirements are met.
  • Set requirements for, and oversee execution of, a contract with a Managed Security Services Provider who may supply many of the needs set forth in this section, including running the information security architecture and infrastructure.

 

Qualifications / Experience
 
  • Requires a BA, BS or Master’ s degree in a Computer Science or Information systems related discipline; an MBA or advanced degree in those fields is a plus.
  • Requires a minimum of ten years of progressive leadership experience in computing and information security, preferably 15+ years, as well as at least five years’ experience with Information Security, Internet Technology, and Risk Management.
  • Should have an Information Security certification such as the Certified Information Systems Security Professional Certification (CISSP) or Certified Information Security Manager Certification (CISM)  
  • Requires experience with audit compliance and risk management as it relates to information security.
  • Requires experience in leading and managing IT information security implementations.
  • Requires the ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals. This is a highly responsible position that requires both quantitative and interpersonal skills.
  • Requires a demonstrated ability to manage a team of professionals as well as experience with working with Managed Security Services Providers
  • Should be a someone who is a thought leader, articulate, consensus builder, and who is persuasive with a demonstrated ability to serve as an effective member of the senior management team and communicate information security-related concepts to a broad range of technical and non-technical team members at all levels of the organization.
  • Should have a working understanding of ITIL processes and concepts
  • Should have some understanding of Federal, state, local, and overseas laws and regulations governing information security and data privacy
  • Should have some experience in the healthcare field especially relative to meeting FDA regulations

 

 
Apply Online
Apply with LinkedIn Apply with Facebook Apply with Twitter

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.

Posted

  HUNTER Technical Resources Celebrates its 20thAnniversary ATLANTA, GA HUNTER Technical Resources LLC is proud to announce its 20th anniversary as a leading IT staffing and project solutions provider. The company has blossomed from the original dreams of its Georgia Tech founders, growing from a regional company into a national resource for recruiting… Read more »

Posted

IT Staffing

HUNTER Expands Professional Services Offerings with Addition of Patti Dismukes LEADER IN IT RECRUITING TO GROW PROFESSIONAL SERVICES PARTNERSHIP   ATLANTA, GA September 2016 Atlanta-based HUNTER Technical Resources, a leading provider of IT recruiting and staffing services, announces the hiring of Patti Dismukes as Vice President of Professional Services. Patti will grow HUNTER s Professional… Read more »

Posted

Recruiter Quote

What should you expect from your partnership with a recruiter?   CONTACTS – Recruiters are immersed in the hiring process day-in and day-out. They have cultivated relationships with numerous Hiring Managers at major companies and their sole purpose is to match the right candidate with the right role. Partnering with a recruiter makes sure your… Read more »

Posted

IT Staffing and Recruiting

When it s time to navigate a job search choose to partner with an EXPERT! A recruiter or headhunter is someone who spends their days and nights searching for quality candidates in order to create a pipeline of individuals skilled and ready to step in to their next role. As experts at building relationships, recruiters create… Read more »

Posted

New headquarters for IT staffing & recruiting firm

ATLANTA, GA December 15, 2015 Atlanta-based HUNTER Technical Resources, LLC (HUNTER) a leading provider of IT recruiting and staffing services, announces its Atlanta headquarters relocation and expansion. HUNTER s headquarters will move to Glenridge Highlands One, a class A office space located along the bustling GA 400 corridor inside of I-285. The new address… Read more »

Posted

Leader in IT recruiting to help companies meet staffing needs with top talent. ATLANTA, GA September 30, 2015 Atlanta-based HUNTER Technical Resources, a leading provider of IT recruiting and staffing services, announces its expansion into Dallas/Ft. Worth with a regional office to serve the region s growing IT industry. This expansion strategically positions HUNTER to… Read more »

Posted

Atlanta, GA September 16, 2015 – Clint Bailey, Managing Partner of HUNTER Technical Resources, LLC (HUNTER), a leading provider of IT recruiting and staffing services, was honored on September 12, when TiE Atlanta announced the rankings of the 2015 TiE Atlanta Top Entrepreneurs at the TiECON Southeast Conference in Atlanta. This recognition honors company… Read more »

Posted

ATLANTA, GA April 14, 2015 Atlanta-based HUNTER Technical Resources, a leading provider of IT recruiting and staffing services, announces its expansion into Austin with the opening of a regional office to serve the area s growing IT industry. This expansion strategically positions HUNTER to better serve new and existing clients throughout Texas and the Southwestern… Read more »

Posted

ATLANTA, GA December 1, 2014 Atlanta-based HUNTER Technical Resources, a leading provider of IT recruiting and staffing services, has announced the expansion of their regional office located in Denver, CO. In response to continued strength in the information technology job market, HUNTER is growing their U.S. footprint to better serve their existing Denver, West… Read more »