Director of Information Security (Remote in Canada)



Job Description:If you’re looking for a unique opportunity to lead an Information Security with the oversight to organization, design, implement and lead the team delivering our strategic objectives – read on. We’re building innovative technology that powers our customer-first ecosystem. We believe inspired empowered teams are the key to success. We’re a collaborative, driven team that believed in outcomes over outputs. What we’re all about Small teams, making big things happen: We will give you an objective our clients want, give you the tools to aid your success, then let you make the magic happen, we like efficiency and loath useless activities so we won’t get in your way. Supporting small teams to do big things: We support our teams by providing the right tools to let you work your magic and successfully contribute without needless processes getting in your way. Developing your Skills: Helping you grow professionally and individually to thrive in a results-based company. Were not afraid to take risks and approach problems in unique ways. We learn from each other and help our teams to master their craft. Real challenges: Our teams are collaborative and help us develop solutions to solve real-world problems. We work together to accomplish our goals and drive growth. We want to gain insights and deliver an innovative product to our customers. THE JOB As the Director of InfoSec, you’ll be working closely with the leadership to continue building the InforSec team. You’ll be a “Mentor Coach” with a focus on seeking and developing the best talent in the industry. You will maintain a hands-on approach to oversee the Infomation Security footprint across enterprise and product considerations. In this role you will be responsible for establishing, implementing, and enforcing the InfoSec standards. You will be responsible for the creation and maintenance of our InfoSec strategies. The Director will serve as an expert advisor to our senior management group in the development, implementation, and maintenance of our global infoSec infrastructure. You would be responsible for ensuring best practice control objectives for system integrity, availability, confidentiality, accountability, and assurance fall within the context of the risk tolerance set by the senior management group. YOUR RESPONSIBILITIES Identify and propose key information security program priorities, initiatives, plans, practices, and tools. Execute approved information security project plans and provide regular status reporting on the progress of such projects. Provide guidance and recommendations regarding the prioritization of investments that mitigate risks, strengthen defenses, and reduce vulnerabilities. Develop, publish, and maintain comprehensive information security standards, policies, procedures, and guidelines. Conduct threat and vulnerability assessments to properly analyze the risks to information security and determine appropriate measures to manage those risks effectively. Assist in the review of applications and technology environments during the development or acquisition process to (a) assure compliance with corporate security policies and directions and (b) assist in the overall integration process. Advise the management team on risk issues that are related to information security and recommend actions in support of the business goals Remain current on security trends, technologies, legal, and compliance requirements. Understand potential and emerging information security threats, vulnerabilities, and communicate this information to appropriate team members throughout the company on a timely basis. Guide business units as necessary to investigate security breaches and to pursue associated potential disciplinary and legal actions in collaboration with the Corporate Human Resources and Legal departments as appropriate. Engage and direct outside consultants as appropriate for information security audits. Conduct regular and ongoing monitoring of and reporting on corporate compliance with information security standards and policies. Manage the investigation of security breaches or potential breaches and assist with disciplinary and legal matters associated with such violations. Direct the development and enforcement of information security and privacy policies in compliance with federal and state regulations and standards. Oversee the development of, and be the enterprise champion of, a corporate security awareness and training program. Collaborate with business units to deliver essential security tips and guidance to merchants and partners. Work with multiple subject matter experts across a range of domains to ensure compliance under PCI-DSS, PA-DSS, and P2PE standards. WHAT YOU BRING Bachelor’s Degree or equivalent work experience. Experience in the credit card acquiring/processing industry is preferred. 7+ years experience in Information Security within enterprise environments. Demonstrate experience managing and leading teams. Security/Networking certifications (i.e., CISSP, CISM, GIAC, CCNA). Understanding and awareness of the Payment Card Industry (PCI) data security standards (PCI DSS) and the payment application data security standards (PA DSS) as well as experienced in the implementation of controls to mitigate PCI issues. Extensive and recent experience and in-depth working knowledge across multiple technical disciplines including one or more of the following; IDS/IPS, Firewalls, SIEM, Enterprise Anti-Malware solutions, DLP, Vulnerability Assessment tools, Technology Compliance tools, FIM. Expertise with security event analysis and intrusion detection (IDS/IPS Incident response – triage, incident analysis, remediation). Ability to perform in-depth forensic analysis to aid in finding threats/suspicious activities in the enterprise. Working knowledge of Windows and Linux Operating Systems. Working knowledge of networking protocols (i.e., FTP, HTTP, DNS, DHCP, RADIUS, SNMP, SSH, Syslog, and SMTP). WHAT WE OFFER Excellent benefits Flexible Vacation Very competitive pay Bonus structure RRSP Plan A one-time, tax-free allowance of up to $500 stipend build out a comfortable home-officeCompany Description:We’re building innovative technology that powers our customer-first ecosystem. We believe inspired empowered teams are the key to success. We’re a collaborative, driven team that believed in outcomes over outputs. Job ID: 1768229
Recruitment Canada

View original article here Source