Director - Corporate Security

Washington Gas Vienna , VA 22181

Posted 3 months ago

Job Description:

Position Summary

Accountable for managing enterprise security program, including designing, implementing, maintaining, and continuously improving operations, policies and procedures that protect the company's physical and information assets. Responsible for developing and executing comprehensive cyber security and risk management strategies. This role will work with operating business units to implement a comprehensive crisis management/business continuity plan. Works with executive management to determine acceptable levels of risk for the organization. This position is required to be on call 24x7

Tasks and Responsibilities

  • Develops and implements enterprise security strategy for corporate computing infrastructure

  • Assesses impact of global service delivery and how it relates to potential threats and risks to WGL

  • Identifies and implements protection goals and objectives consistent with corporate strategic plan

  • Develops and communicates corporate security strategies and initiatives to senior management team, staff, key stakeholders and third-party service providers

  • Responsible for daily activities of all information security and corporate security staff including the 24x7 security operations center

  • Serves as co-chairman of the corporate crisis management team and the security steering committee

  • Oversees investigations of theft, potential fraud, misuse of company assets, security breaches (physical and logical) and violations of policy

  • Protects corporate value, image, and reputation by implementing sound security practices designed to protect corporate information assets

  • Oversees delivery performance of third-party security operations service provider and works with local account management team to integrate WGL's program into global framework

  • Manages appropriate vendor relationships, ensuring proper review, evaluation and execution of all contractual relationships. Includes but not limited to contracted security guard force, logical security consulting firms and third-party equipment suppliers

  • Establishes, monitors and reports on key outsourced service provider service level agreements and operational metrics related to corporate security

  • Directs periodic controls assessments to substantiate adherence to legal, regulatory, SOX, and audit requirements

  • Provides senior technical leadership including being conversant with the future direction of systems as related to corporate security framework

  • Proactively protects the integrity, confidentiality and availability of WGL information and corporate assets and facilities by: (1) responding in a timely manner to or participating in the investigations of loss or misuse of information; (2) communicating unresolved security exposures, misuse, or noncompliance to management and recommending appropriate steps for remediation; (3) working with WGL legal & HR departments on identification of and resolution of sensitive security breaches by employees and contractors

  • Evaluates potential threats, vulnerabilities and control techniques and initiates remedial responses appropriate to threat level

  • Coordinates development of business continuity plans corporate wide, including specific disaster recovery plans, processes and procedures

  • Maintains relationships with federal, state and local law enforcement, key utility associations and utility related government agencies

  • Direct experience with security management frameworks such as ISO27001, FISMA, COBIT, NIST

  • Builds relationships with key BPO and IT service delivery personnel to ensure WGL's security and control requirements are clearly understood and adhered to

  • Develops and maintains close working relationships with BPO governance, IT, internal and external WGL auditors and operational risk assessment personnel

Qualifications, Skills and Abilities

  • Bachelor's Degree in computer science, information security, network security, or related field required

  • 10+ Years demonstrated leadership and systems-related experience in an IT operations or security/compliance environment required

  • Must currently possess or have the ability to obtain DoD Secret clearance required

  • Extensive knowledge of computer security systems, forensic tools and troubleshooting techniques

  • Ability to establish rapport and effective working relationships with team members and business partner

  • Ability to proficiently operate computer software and hardware for data manipulation, analysis and presentation purposes

  • Ability to logically analyze and solve defined business problems

  • Must be a practiced listener and effective communicator with the ability to communicate security-related concepts to a broad range of technical and non-technical staff

  • Experience directing a security incident response team

  • Experience with business continuity planning, auditing, and risk management, as well as contract and vendor negotiation

WGL is an EO employer M/F/Vets/Disabled

WGL is an EEO employer M/F/Vets/Disabled


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Industrial Security Program Officer

Netapp

Posted 4 days ago

VIEW JOBS 11/13/2019 12:00:00 AM 2020-02-11T00:00 Are you data-driven? We at NetApp believe in the transformative power of data – to expand customer touchpoints, to foster greater innovation, and to optimize operations. We are designed for simplicity, optimized to protect, created to embrace future opportunity, and open to enrich choice. We are the data authority for hybrid cloud, and we are helping our customers realize the full potential of their data. We've built a Data Fabric for a data-driven world – to simplify and integrate data management across the resources that are best for the business. With the Data Fabric, our customers can harness the power of cloud data services, build cloud infrastructures, and modernize storage through data management. Job Summary The Government Security Operations (GSO) with NetApp is seeking an Industrial Security Program Officer who will have a primary role in providing day-to-day support of operations with Industrial Security programs. The role will serve as the Contractor Special Security Officer (CSSO) and will be responsible for working with the GSO team in administration of classified activities associated within the Netapp US Public Sector. This position has administrative responsibilities associated with compliance to the NISPOM and Intelligence Community Directives. Expert knowledge of Personnel Security is required and the ability to navigate the Intelligence Community. Additionally, this position will ensure compliance within NetApp's GSO by conducting internal audits as well as supporting external audits conducted by the US Government and/or other external groups or agencies as directed. The Industrial Security Program Officer will administer a variety of tasks to ensure GSO compliance with established Government requirements. Job Requirements Specific responsibilities include: * Administers routine aspects of Industrial Security Programs that fall under the Intelligence Community Directives, NISPOM, and support GSO management of classified systems * Works with the corporate Industrial Security team on a variety of security requirements * Develops, implements, and monitors SCI security policies and procedures; ensures compliance with all aspects * Leverages the Government Security Operations Center (GSOC) for processing VARs, investigations and other security processes. * Establishes a network of contacts and maintains working relationships with all government agencies, partner company's security teams and program managers * Assists personnel in completing SF86 packages, e-QIP, and fingerprinting and coordinates with customer security representatives to process security clearances and periodic reinvestigations of employees * Analyze and draft DD254s, interpret requirements and delivers presentations as needed * Uses JPAS and other government sites, such as ACCS and e-FCL * Creates reports and maintains documents and databases to accurately track candidates through the security process from initial clearance submission until they are adjudicated * Aid in conducting self-inspections of cleared facilities in preparation for government audits, identifying deficiencies, and recommending corrective actions * Execute new hire security briefings, exit interviews, and debriefings * Investigates and reports security violations and incidents * Maintains all security documentation and files in accordance with government requirements * Assists with implementation of safeguarding, classification management, physical security, and security education for adherence to all government security collateral and SCI requirements * Identifying current and potential problem areas as well as updating or establishing new requirements * Identify security risks and recommending risk mitigation strategies * Basic knowledge in NISPOM Chapter 8 and ICD 703 * Basic knowledge in Information Assurance * Provide oversight of secure spaces, to include alarm response within specified time limits Job Requirements: * Must have current TS/SCI CI Poly and will have to pass/possess Full Polygraph clearance * Good interpersonal communication and customer service skills are needed in order to work successfully with prospects, customers, and cross functional teams to meet performance goals * Works with the corporate Facility Security Officer and Information Systems Managers and overall Corporate team on complex initiatives * Excellent analytical, troubleshooting and communication skills * Strong aptitude for identifying/learning new technologies * Ability to be adaptive to an evolving environment * Travel up to 20% Education * 5+ years' experience in CSSO/FSO role; ISSM/ISSO desired * Bachelor's degree * ICD Contractor Special Security Officer Certification * COMSEC Manager certification * Facility Security Officer certification: either possess or attain * NISPOM Chapter 8 or ICD 703 certification desired * Knowledge of International Security is considered a plus * Must possess experience in the U.S. Government, DoD, Intelligence, and Industrial Security management * Thoroughly familiar with the Microsoft Office Suite So get ready to tap into the data visionary within, and join us as we accelerate digital transformation and empower our customers to change the world with data! If you ask a NetApp employee why they work here, the answer is inevitably the same: the people. At NetApp, our culture is at the heart of what we do. We place importance in trust, integrity, teamwork, and caring above all else. NetApp is a place where people are empowered to make a difference. Empowered to innovate. Empowered to collaborate. Empowered to help ourselves and others be data-driven and change the world. We take care of each other, our customers, our partners, and our communities simply because it's the right thing to do. We work hard but also recognize the importance of work-life balance for our employees because what's important to them is important to us! Recently we implemented Family First, which encourages employees to take paid time off to bond with a new child (through birth or adoption) or to care for a family member with a serious health condition. Our volunteer time off program is best in class, offering employees 40 hours of paid time off per year to donate their time with their favorite organizations. We provide comprehensive medical, dental, wellness and vision plans for you and your family. We offer educational assistance, legal services, and access to discounts and fitness centers. We also offer financial savings programs to help you plan for your future. Join us and see what empowerment can do. Equal Opportunity Employer Minorities/Women/Vets/Disabled Nearest Major Market: Washington DC Job Segment: Program Manager, Industrial, Medical, Information Systems, Database, Management, Manufacturing, Healthcare, Technology Netapp Vienna VA

Director - Corporate Security

Washington Gas