What are the responsibilities and job description for the Information Security Manager position at REKRUITD?
Responsibilities :
- Lead Security operational governance activities, Multi-3rd party services, and Dedicated or shared (industry) services.
- Compliance and operational focused.
- Ensuring delivery excellence in security tooling and business operations (Ensuring avoidance of non-performance / non-compliance contractual penalties).
- Maintain an account security plan for the selected account(s) and Products.
- Manage and report security incidents.
- Ensure Audit preparation, facilitation and remediation.
- Manage Security Risk and Exception to standards management.
- Ensure knowledge and implementation of security fundamentals, policies and standards (regulatory and contractual).
- Escalate and resolve Security Incidents with the Security Incident Response team.
- Coordinate delivery of Security Metrics and Reporting in support of contractual commitment.
- Five (5) years' experience in technology with a focus on information security, technology, management and policy
- Experience in the development and implementation of planning security policy, procedure, and / or safeguards
- Extensive knowledge of security administration and computer security tools
- Successful experience in retrieving, analyzing, reporting, addressing and / or tracking security intrusions and vulnerabilities; demonstrated knowledge in systems design, development, documentation, testing, implementation, and / or maintenance; demonstrated ability to work effectively with technical and non- technical managerial and professional staff.
- Three (3) years of proven technical and functional problem solving, tracking, and resolution skills, demonstrating the ability to manage complex projects.
- Excellent verbal, written, and presentation communication skills.
- Experience in technology management or information security in both government and healthcare environments, including substantial experience with HIPAA, FIPS, FISMA, FedRAMP, NIST, and NIST CSF.
- Three (3) or more years' experience in at least three (3) of the following domains in the Certified Information Systems Security Professional certificate : Asset Security, Security and Risk Management, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management (IAM), Security Assessment and Testing, Security Operations, Software Development Security
- CISM (Certified Information Security Manager)
- GIAC (Global Information Assurance Certificate)
- SSCP (Systems Security Certified Practitioner)
- CISA (Certified Information Systems Auditor)
- CISSP (Certified Information Systems Security Professional)
Experience :
Certifications :
