Information Security Officer

Ebix, Inc. Johns Creek , GA 30097

Posted 3 months ago

The Information Security Officer will work closely with Systems, Networking, Software Development and other teams to ensure information security is at the forefront of the enterprise, while working closely with Compliance for activities relating to the availability, integrity and confidentiality of data and compliance with PCI, HIPAA, GDPR, NYDFS and SOC2.

Essential Duties and Responsibilities

Governance:

  • Develop a comprehensive enterprise information security and risk management program

  • Manage team member performance; train and advocate for a team of security engineers

  • Provide guidance to the organization on the appropriate information security services, mechanisms and technologies

  • Monitor daily emerging security threats and news, assess company's risk exposure to them, implement mitigating measures, and communicate this information to key stakeholders on a timely basis

  • Participate in risk assessments to ensure compliance with PCI, HIPAA, GDPR, NYDFS, SOX, ISO 27001 and SOC 2

  • Conduct regular reviews and provide exception/exposure reporting and remediation plans to leadership

  • Develop security-related training programs, awareness campaigns, metrics and skills for the organization

  • Implement enterprise wide security controls to ensure the confidentiality of data across multiple geographically separated data centers and endpoints

  • Manage and mature security appliances and software including Data Loss Prevention (DLP) Anomalous detection appliances, intrusion detection systems, file integrity monitoring software, 24/7 managed SOC, advanced endpoint protection, vulnerability scanners, source code review, vendor security assessments and internal security

  • Responding to security questioner, managing the security audits and on-site assessments and provide the roadmap to fix the gap.

Technology:

  • Extensive knowledge of security controls and technologies including SIEM, DLP, WAF, IPS and firewall

  • Exposure to Antivirus products, malware detection and curing

  • Develop, deliver and monitor the hardening standard for servers and environments. Review the hardening standard on periodic basis and update them to meet the security requirement.

  • Leading the Corporate SIEM and WAF team and develop effective incident detection rules and the proactive monitoring

  • Lead evaluations and implement new technologies related to information security

  • Familiar on VTA, AppScan, OWASP standard, Penetration testing and guide the team to remediate the findings.

Job Requirements

  • Serve as senior information security leader in the organization

  • Coordinates with operational groups and business units to identify and implement measures to prevent or detect security incidents or breaches.

  • Ability to communicate and collaborate cross-functionally, with various levels above and below, internally and externally, and to technical and non-technical audiences

  • Solid understanding with TCP/IP, Windows and Linux servers, along with an ability to implement and configure security applications and hardware

  • Strong technology background on access control, IDS/IPS, vulnerabilities, WAF, DLP, email and protections

  • Proven ability to lead and apply information security, risk management and privacy practices

  • Demonstrated ability to manage in a way that results in highly-engaged teams

  • Demonstrated understanding of PCI-DSS, SSAE-16, SOC reporting framework, HIPAA, GDPR, NYDFS regulations, along with various state, federal and other international requirements

  • Proven abilities in incident management and response

  • Ability to lead and manage technical security-related projects

Qualifications

  • Bachelor Degree in Computer Science, Information Systems, Engineering or related field (or equivalent experience)
  • Certifications such as CISSP, CISA, CISM, CRISC and/or GIAC nice-to-have
icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Threat Analyst Information Security Response

Macy's, Inc.

Posted 2 months ago

VIEW JOBS 12/18/2019 12:00:00 AM 2020-03-17T00:00 Be part of an innovative team that has a direct impact on nearly every aspect of the Macy's experience – our Operations & Field Services team partners with our corporate team to bring initiatives, strategies, ideas, and innovations to life through the art and science of retail management in our more than 800 stores. ... More " Our My Macy's localization strategy means that our Operations and Field Services associates make the decisions that customize each store for its unique community, helping our customers experience the magic of Macy's on a personal level. Job Overview: At Macy's, we're moving fast—we're at top speed to become America's premiere omni-channel retailer. Macy's technology hub, Macy's Technology (M*Tech) strives to set the pace by providing seamless and compelling shopping experiences for our Macy's and Bloomingdale's customers. MST is creating innovative technology solutions to support these experiences and define the future of retailing. As a member of the Information Security Response Team, the Sr. Threat Analyst will monitor and investigate normal and escalated security events to determine risk and exposure and perform additional forensics investigations to understand impact and mitigation. This position will mentor other Analysts as a technical leader and work closely with them to manage & resolve multiple incidents simultaneously and prioritize based on risks. This is a position for an experienced Sr. Threat Analyst that will receive minimal supervision from management and will be required to lead and make decisions on day to day activities and forensics investigations. This position will be required to have good written and oral communication skills to present the results of the technical analysis and research of each incident or investigation. The Senior Threat Analyst should have experience with and the understanding of multiple security platforms and layers including Anti-virus, Firewalls, Proxy servers, Intrusion Prevention Systems, Logging Correlation/management, Operating systems, Protocols and Incident Response. Perform other duties as assigned. Essential Functions: The Senior Threat Analyst makes decisions based on security events and situations that arises and will make final recommendations to management based on actions taken, incident status and potential exposure and/or risks. The Sr. Threat Analyst will continue to be engaged with management to provide updates and status to help clarify any decision that is needed to be made about a current security incident or risk exposure. The Sr. Threat Analyst will make decisions and recommendations on implementing and improving standard operating procedures as impact to improve efficiencies. The Sr. Threat Analyst will be involved with any and all proof of concept product testing to deciding how the product/tool can be integrated into daily activities, forensics investigations and how it impacts the team. The Sr. Threat Analyst will make the decision for junior Analysts on whether a security event is a false positive or real security incident. * Sr. Threat Analyst will serve in a threat research and response role working in conjunction with the Threat Hunting Team. * Leads and manages security investigations from discovery to resolution and works as an incident response manager for each security incident. * Creates reports to display trends and overall statistics based on correlated security incidents and event data to produce monthly exception and management reports. * Responsible for mentoring, training and support of Level 1 Analysts. * Creates and implements standard operating procedures and processes to help streamline investigations, daily monitoring and analysis research to ensure all analysts are effective and following the same guidelines. * Consistently demonstrates regular, dependable attendance & punctuality. Qualifications: Education/Experience: * Bachelor's Degree and 5-7 years of experience or an equivalent combination of education and experience in Information Security * Understanding of Incident response methodologies and assist with coordinating security incidents. * Experience working with Host Security Event Logs * Working knowledge of Host or Network based Honeypots. * Have an understanding and working knowledge of regulatory and audit mandates to ensure environments meet PCI, FFIEC, SOX and corporate standards. * Working experience with Splunk and Log Analysis Tools. * Understanding of web applications authentication, session management, requests, form submission processes. * Maintaining security monitoring and reporting appliances in addition to leading and analyzing security reporting. * Experience or working knowledge of various networking devices and/or technologies like routers, switches and aggregators. * Have experience with using or managing SIEM technologies * Strong knowledge of TCP/IP, HTTP, FTP, cookies, authentication, virus scanning, web servers, SSL/encryption and reporting packages. * An understanding of a wide array of server grade applications to include Lotus Notes, Exchange, DNS, SMTP, IIS, Apache, SharePoint, Active Directory, Identity Management, Patch Management, LDAP, SQL, and others. * Experience with a host based FIM (File Integrity Monitoring) solutions. * Experience or working knowledge of Authentication technologies like Radius or Tacacs. Communication Skills: * Ability to create detailed and/or focused documentation, reports or standard procedures. * Writes clear problem descriptions and instructions to aid other individuals or groups in problem duplication and resolution. * Ability to explain technical concepts to technical or non-technical personnel and communicate effectively verbally and in writing. Other Skills: * Ability to identify common network and web site attacks such as SQL injection, cross site scripting, remote file inclusion and cookie manipulation. * Ability to decode and understand netflow and traffic flow at packet level traces (skilled with TCPDUMP, PCAPs, traffic generators, etc.). * Knowledge or skill to create correlation rules to detect threats. * Ability to understand, analyze and correlate security events and implement counter-measures to mitigate against intrusion attacks. * Working knowledge of Two-Factor Authentication solutions. * Working knowledge of Intrusion Detection Systems/Technologies. Work Hours: * Ability to work a flexible schedule based on department and company needs. Company Profile: Macy's Inc. is one of the nation's premier retailers. With fiscal 2016 sales of $25.778 billion and approximately 140,000 employees, the company operates more than 700 department stores under the nameplates Macy's and Bloomingdale's, and approximately 125 specialty stores that include Bloomingdale's The Outlet, Bluemercury and Macy's Backstage. Macy's, Inc. operates stores in 45 states, the District of Columbia, Guam and Puerto Rico, as well as macys.com, bloomingdales.com and bluemercury.com. Bloomingdale's stores in Dubai and Kuwait are operated by Al Tayer Group LLC under license agreements. Macy's, Inc. has corporate offices in Cincinnati, Ohio and New York, New York. This job description is not all inclusive. Macy's Inc. reserves the right to amend this job description at any time. Macy's Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment. Creativity, Collaboration, Culture. Macy's, Inc. Johns Creek GA

Information Security Officer

Ebix, Inc.