The Opportunity
In the role of Senior Information Security Risk Manageryou will be responsible for planning and managing the execution of the information security architecture, policy and programs of ACA Compliance Group (“ACA”). This person will work with ACA’s management, various department managers, staff and vendors to assist with the development, execution and enforcement of information security standards that support ACA’s robust security program.
- Highly desired locations: New York City, Pittsburgh, Chattanooga, Boston, Chicago, Florida (Boca Raton, Miami), San Francisco, Los Angeles, Dallas, and Houston.
- Note: This role will likely move to a hybrid role in the future.
What you’ll do:
- Work with the CISO to develop a security program and security projects that address identified risks and business security requirements. Create a strategic plan for the deployment of information security technologies and program enhancements.
- Guide development of (and ensure compliance with) corporate security policies, standards and procedures. Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.
- Anticipate new security threats and stay-up to date with evolving infrastructures.
- Manage the process of gathering, analyzing and assessing the current and future threat landscape, as well as providing the CISO with a realistic overview of risks and threats in the enterprise environment.
- Work with the CISO to develop budget projections based on short- and long-term goals and objectives.
- Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
- Research, evaluate, design, test, recommend or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment; provide technical and managerial expertise for the administration of security tools.
- Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.
- Manage and coordinate operational components of incident management, including detection, response and reporting.
- Manage a staff of information security professionals, hire and train new staff, conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members.
- Perform ad-hoc work/special projects as necessary to support ACA on various client and internal initiatives
To qualify for the role you must have:
- Bachelor’s Degree required – major in Cybersecurity, Information Security Management, Computer Science or Management of Information Systems preferred.
- A minimum of seven years of IT experience, with five years in an information security role and at least two years in a supervisory capacity.
Skills and attributes for success:
- Strong written and verbal communication, presentation, client service,and critical thinking skills
- Dependable, flexible, and adaptable to new initiatives and ever-changing client needs
- Ability to work well in a fast-paced environment and able to collaborate with multiple colleagues/groups to deliver exceptional customer service
