Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Business Information Security Manager

Expired Job

Deluxe Corporation Shoreview , MN 55126

Posted 4 months ago

Req ID#: 12887BR-1

Description

The Business Information Security Manager (BISM) plays an integral part in the development, implementation, and compliance of information security across the enterprise; serving at the business segment level. The Business Information Security Manager is responsible for managing risks related to information security, physical security, privacy, and compliance.

The position serves as an advocate for the business but maintains a clear focus on information security, risk and compliance. The BISM will manage and co-ordinate all information security activities, programs and initiatives for the business unit as well as provide security incident support.

Accountabilities:

Security Policy, Standards, Processes and Procedures

  • Ensuring effective implementation of information security standards, processes and procedures, and guidelines for the business line in cooperation with the enterprise Information Security Program.

Reporting and Metrics

  • Reporting security performance against established security metrics

  • Present findings to manager on compliance reporting for Information Securities Policies. Drive the Business Continuity Planning and DR strategy for the business unit.

Compliance

  • Ensuring and monitoring security compliance with industry, regulatory and contractual obligations (working closely with Corporate Legal, Compliance and Security teams)
  • Ensuring security compliance and meeting all service-level agreement requirements

Risk Management

  • Understanding the trade-offs required to manage the different levels of risk tolerance and risk exposure across the organization and balancing this with risk investments

  • Coordinating with technology and business groups to assess, implement, and monitor security related risks

  • Maintaining a risk registry and related risk treatment plans for the business unit.

Vulnerability Management

  • Ensure device, system, and application vulnerabilities are remediated in a timely manner according to Deluxe policy and standards

Security Solutions

  • Develop recommendations and take appropriate action. Present to Information Technology management development/implementation plan for secure solutions.

  • Ensure new products/services, applications, new third party or client relationship, etc. has appropriate security controls embedded and that the risks are appropriate addressed

Security Awareness

  • Supporting an information security awareness program to ensure staff members across the organization understand the risks and their role in protection the environment

Suppliers and Third Parties

  • Where applicable, oversee the security of key suppliers and third party service providers.

Security Consulting in M&A and other due diligence initiatives

  • Participate in M&A and other due diligence initiatives in support of the business unit; Working closely with the broader M&A teams.

  • Participate in business unit client facing engagements and present as needed

  • Primary point of contact for all IT internal audits, participates in scoping, deliverable requests, collaborate with senior leadership to clear audit reports and help ensure effectiveness/completeness of action plans.

Access Management

  • Facilitate any required access management and entitlement review processes

Incidents and Investigations

  • Lead security related incidents and investigation resulting from business unit working closely with the corporate cybersecurity operations and compliance teams.

Relationship Management

  • Engage with and serve as the primary point of contact with business and technology stakeholders for information security, risk and compliance matters.

  • Develop and maintain relationships and partnerships with internal (Deluxe Security, business portfolio, and governance teams) and external business partners to provide appropriate transparency to enterprise risks and discuss transformative and strategic matters.

Required:

  • Bachelors degree (or equivalent experience) in information security

  • 8+ years of work experience (Information security, Risk, or Compliance)

  • Certification required in one or more of the following CISSP, CISM, CISA, or equivalent

  • Security Risk, Governance and Compliance knowledge, methods, and processes

  • A solid background providing security solutions

  • Excellent communication skills including the ability to translate technical/security issues to business users

  • Excellent Leadership skills with ability to independently lead virtual teams to deliver results

  • Self-motivated, willingness to take on challenges and adaptability to change and manage changing priorities

  • A sound understanding of security best practice and international standards such as NIST, ISO 27000 and PCI DSS.

  • Good understanding of software development processes particularly in relation to secure development

  • Good understanding of key network and technical security controls

  • Security Training and Awareness and Security Incident Management knowledge experience

  • Demonstrable experience of driving operational implementation of policies and processes across business units, using influencing and security skills

  • Demonstrable experience of working within regulated environments

  • Knowledge and experience of Information Security Risk and Security governance

  • Understanding of risks in banking/ financial services sector will be an added advantage

Deluxe Corporation is an Equal Opportunity / Affirmative Action employer:

All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, disability, sex, age, ethnic or national origin, marital status, sexual orientation, gender identity or presentation, pregnancy, genetics, veteran status or any other status protected by state or federal law.

EOE/Minorities/Females/Vet/Disability

Please view the electronic


upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Technology Intern

Ecumen

Posted 6 days ago

VIEW JOBS 1/10/2019 12:00:00 AM 2019-04-10T00:00 Overview Want to work for a company that cares? Put your passion for serving others to work at Ecumen! We're hiring an Intern to work on our corporate Information Technology team in Shoreview, MN. You'll enjoy a business-casual environment, employee gardens, flexible work schedule, volunteer options and career growth opportunities. Ecumen is over 150 years old and one of Minnesota's Top 5 non-profit providers of senior housing and aging services. This year, we're happy to celebrate our 10th year as a "Best Place to Work." Every employee at Ecumen has the opportunity to empower older adults to lead fulfilling lives. Join us as we envision a world without Ageism! Responsibilities The Information Technology Intern will participate in a wide range of projects related to databases, report writing, technology devices, and IT training development. This internship will be both educational and practical with an opportunity to learn cloud software programs, data warehouse concepts, various reporting tools and develop technology training. This position will provide a good understanding of the role IT plays within a decentralized organization. This internship will allow a first-hand experience on how IT can function as a strategic business partner within an organization. The intern will also have opportunities to network with other areas within IT and other departments at Ecumen. Essential job responsibilities include: Utilize various tools to make data in applications available to business partners.Develop analytical reports with a data connection to multiple data sources.Create IT training materials for casual users and power users.Utilize cloud software to manage projects and diagram standard business practices.Assist with implementation and user adoption strategies regarding new functionality within the software.Work with business partners to research and test technology solutions to business challenges.Qualifications Information Technology Intern Minimum Required Qualifications: * Currently enrolled in an undergraduate degree program with an interest and aptitude to work in Information Technology or Business with an IT emphasis. * Students enrolled in a Lutheran Educational Conference of North America (LECNA) School preferred. In Minnesota this includes: Concordia University, Augsburg College, St. Olaf College, Gustavus Adolphus College and Concordia College, Moorhead. * Ability to prioritize tasks and handle numerous assignments simultaneously * Proficient in Microsoft Office and internet applications * Ability to communicate effectively, including written and verbal skills. * Work well, both individually and as part of a team, through respect, collaboration and dedication; and successfully interact with a diverse culture base. * Current valid driver's license and proof of vehicle insurance, if applicable. Based on funding from the ELCA (Evangelical Lutheran Church of America) for this position, a candidate must meet the following qualifications: * High school diploma * Student must be enrolled in, or graduated from, a Lutheran Educational Conference of North America (LECNA) School, OR be an active member of an ELCA congregation, OR have a connection to the ELCA. For example, participating in a youth program at an ELCA church, or attending one of the following listed schools: * Concordia University * Augsburg College * St. Olaf College * Gustavus Adolphus College * Concordia College, Moorhead Please indicate your affiliation with the ELCA in your application. Equal Opportunity Employer Ecumen is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, familial status, disability or veteran status. We participate in E-Verify and pre-employment drug testing. Ecumen Shoreview MN

Business Information Security Manager

Expired Job

Deluxe Corporation