Director Information Security

Overview

Hybrid
$150,000 - $170,000
Full Time

Skills

InfoSec
SIEM
Security
PCI
Soc-1
Vulnerablity
Threat intelligence
Firewalls

Job Details

Flybridge Staffing is currently searching for a Director of InfoSec/Cybersecurity for a client who develops and delivers innovative merchant payment processing and point of sale solutions to clients nationwide. This role will be centralized in our Boca Raton office, with remote work 90% of the time.

We are currently seeking an InfoSec/Cybersecurity Director who will continue to mature the company s Cybersecurity and Information Security posture and strengthen the overall security controls throughout the enterprise.

This role will enable the expansion of the company s ability to meet and exceed all financial services and payments industry security standards, such as PCI and SOC-1 compliance requirements, through the implementation of sound policies, procedures and tools needed to secure our customers and the company s information.

Responsibilities

  • Initiate, develop, and maintain information security policies and procedures.
  • Ensure security strategies are being followed to meet organizational security goals and industry standards such as PCI and SOC-1.
  • Identify security risks, coordinate and/or perform assessment of security risks, facilitate risk and security incident responses, and validate security controls as needed.
  • Document all the security policies and promote activities and procedures to create a general awareness about the significance of security within the company.
  • Review the security plans that have been implemented on the systems throughout the entire network of the organization, thus acting as an information security consultant.
  • Ensure that IT security best practices and configurations are included in network, desktop, server, wireless, VoIP, and mobile configurations.
  • Configure, implement, monitor, and support security software/systems that will help ensure compliance with regulatory, industry, and corporate policies and procedures. This includes but is not limited to IDS/IPS, secure file transfer, DLP, encryption, firewall rule assessments, log management/correlation, secure password storage/retrieval, application listing, vulnerability management, threat hunting, etc.
  • Respond to security related tickets escalated from various departments and work collaboratively across multiple teams to communicate and manage expectations during the resolution of the issue.
  • Monitor, analyze, and respond to SIEM alerts from monitoring tools and third-party vendors.
  • Perform regular inspections and tests (e.g., External and Internal PEN tests) to ensure security of sensitive information.
  • Assist in routine system and network management tasks as needed, including Change Management, System Updates and Patch Management; Backup and Recovery of server and desktop systems.
  • Assists IT Department in assessing technological risks.

Minimum Qualifications

  • BA or BS degree and/or equivalent combination of education and experience.
  • At least 10 years of experience in a medium or large-sized enterprise or service provider IT organization.
  • Minimum of six (6) years' experience in IT security infrastructure, design, operations, and information assurance.
  • Deep understanding and 5+ years of experience working with industry-leading security platforms (e.g. firewalls, IDP/IDS, anti-virus, threat intelligence, vulnerability management, etc.).

Additional Requirements

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Information Systems Security Engineering Professional (ISSEP) or other certifications preferred.
  • Hands on experience as an incident first responder or incident response manager.
  • Hands on experience (build, administration, and maintenance) of Windows, Linux and virtualization technologies.
  • Expert knowledge of patch and vulnerability management processes.
  • Knowledge of cloud technologies with current experience and training.
  • Knowledge of network protocols, utilities, and topics.
  • Knowledge of vulnerability and threat management solutions.
  • Knowledge of desktop and backup technologies.

****NO SPONSORSHIP AVAILABLE**** please. If your background aligns with the above details and you would like to learn more, please also submit your resume to or on our website, and one of our recruiters will be in touch with you ASAP.

Follow us on to keep up with all our latest job openings and referral program.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.