Enterprise Info Sec Mgr in Indianapolis at Delta Faucet Company

Date Posted: 3/28/2018

Job Snapshot

Job Description

Delta Faucet Company has an awesome new opportunity for a Enterprise Information Security Manager within our Indianapolis HQ IT Department!

The Enterprise Information Security Manager is responsible for keeping the Company’s information systems secure by proactively researching, designing and managing an IT security program that aligns with best practice security guidance. Also, this role is responsible for developing, maintaining and publishing corporate information security standards, procedures, training and guidelines as well as overseeing implementation of upgrades, repairs, modifications and replacements of information security devices.

Principal Responsibilities:

  • Develop and maintain the Company’s Information Security Strategy, Priorities, Policies and Incident Management
  • Develop, maintain and execute an effective end-user security awareness training program
  • Manage the Company’s external and internal vulnerability management program and be accountable to quickly resolve identified vulnerabilities.
  • Research and anticipate security industry trends and best practices and incorporate relevant considerations into the Company’s information security program
  • Coordinate with IS functions to set a strategic and comprehensive security approach.
  • Interface across multiple functions within IS to proactively assist in defining security direction for future projects that utilizes the IS Security Strategy.
  • Participate in long-range planning, technology reviews and outside professional development to allow the Company to stay current with security trends.
  • Hire, manage and direct outside resources, as required, to initiate projects needed to support the Company’s security program and architecture.
  • Ensure security policies are enforced by performing periodic review of systems, applications and processes as well as monitoring compliance among employees, contractors, third-parties.
  • Act as internal security consultant to all areas of the organization, providing expertise and advice on the security components of information systems and emerging information technologies.

Education and Experience/Skills:

The ideal candidate should possess a degree in computer science or a related field and at least ten years of related systems experience; or equivalent combination of education and experience. The candidate should possess the CISSP designation. The candidate should be forward thinking, have the ability to work independently, and exercise sound judgment when solving problems. The candidate should also possess strong customer service skills and demonstrate attention to detail. The candidate must be able to effectively communicate at all levels of the organization and be able to learn and apply new technologies and skills.

Preferred Technical Skills

Experience with Best Practice Security Frameworks (PCI-DSS, SANS, NIST, ISO) and Security Risk Management

eCommerce Risk Mitigation Experience

ERP Controls Experience

Palo Alto Networks Firewall Administration and Management

Sourcefire/CISCO IDS/IPS Administration and Management

Nessus/Tenable Solutions Security Center Administration and Management

Experience with penetration testing

Wireshark/PCAP Administration and Management

Antivirus/Malware Software Administration and Management

Security Awareness Training Experience

Network Monitoring and Response Experience