Infosec Director

  • Posted 2 hours ago | Updated 2 hours ago

Overview

Remote
Up to $140,000
Full Time

Skills

Infosec

Job Details

Job: Infosec Director

Location: Remote from anywhere in the US

Start Date: Immediate

Shift Type: Will work during the US EST hours. Some overlap with PST and Australia hours (on a needs-based basis).

Exp Level: 15+ years

Job Description:

  • Oversee efforts to uphold confidentiality, integrity, and availability of information systems.
  • Responsible for prioritizing information security awareness, vulnerability avoidance, threat protection/detection, incident response, breach recovery, and business continuity.
  • Maintains a comprehensive understanding of potential threats to information system confidentiality, integrity, and availability.
  • Owns information processing system administration tasks related to authentication, authorization, threat detection/protection, breach response, recovery, and business continuity.
  • Drives the classification of data and systems (public, private, confidential, compliance confidential) across company assets.
  • Participates in threat modelling, including assessing likelihood/frequency, impact, risk reduction, recovery, and associated costs.
  • Reviews, updates, and approves company policies and standard operating procedures related to information security.
  • Participates in Change Approval Board (CAB) meetings, providing input on changes with information security implications.
  • Recommends, drives, and tracks information security awareness training initiatives.
  • Recommends and drives implementation of appropriate security software solutions for intrusion prevention/detection, data loss protection, anti-virus, phishing (email), network scanning, software vulnerability scanning, static code analysis, and security information and event management (SIEM).
  • Reviews system and security software logs for signs of anomalous behavior.
  • Tracks results from static code analysis and application scanning tools, prioritizing vulnerability remediation with development team leaders.
  • Tracks results from network penetration testing, prioritizing vulnerability remediation with operations team leaders.
  • Serves as the primary point of contact for suspected or actual security events.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Mindsprint