Ask.com is seeking a Director of Information Security to further the development of Ask’s enterprise security program. Under the direction of the Chief Information Security Officer, The Director will work with business technical teams to identify & remediate vulnerabilities, implement security tools, improve user awareness & training, and respond to security incidents. The Director will identify security requirements, select vendors, develop implementation plans, track progress, & provide subject matter expertise to support these efforts & will create policies, procedures, and other documentation to support these efforts & provide a level of consistency in efforts across the enterprise.
Qualifications
In addition to oversight and coordination of efforts, the Director will provide hands-on expertise in responding to security incidents, implementing tools, monitoring threats, etc. The Director will be expected to demonstrate strong communication skills, excellent organizational & project management skills, and have a deep & broad understanding of IT in general and IT Security in particular.
Your Task
• Work with Ask Businesses to develop detailed security project plans.
• Track individual businesses’ progress towards established security objectives.
• Lead security product selection & implementation efforts across Ask businesses.
• Provide hands-on technical assistance to businesses’ implementation of security products.
• Develop operational procedures for security tools (vuln scanning, SIEM, etc).
• Work with service providers and other staff members to implement established security procedures.
• Coordinate security testing efforts; track remediation of findings.
• Monitor threat landscape for emerging threats; communicate threat information to businesses.
• Participate in security incident response efforts including off-hours/on-call support.
Your Skills
• Minimum of 10 years relevant experience required
• Bachelor degree in Computer Science/Engineering preferred or equivalent combination of education and relevant experience
• Experience With Relevant Security Tools
Vulnerability Assessment tools (Rapid7, Qualys, etc)
SIEM tools (Arcsight, QRadar, etc)
NGFW (Palo Alto, Juniper, etc)
• Understanding of application security concepts, common app flaws, OWASP top 10, etc.
• Experience developing software is preferred.
• Demonstrated excellent organizational and time management skills
• Excellent communication skills – ability to exert influence & build consensus without direct authority
• Ability to work and manage time independently and creatively
• Ability to convey a strong presence, professional image, deal confidently with highly complex technical problems
• Ability to work independently and as part of a team; and ability to follow instructions and guidance
• Ability to anticipate problems, resolve ambiguity and take decisive action
• CISSP or other security certifications are preferred
Pass it on for Referral Bonus. Not the right role for you, but know someone we should meet? Share with him to earn $1,000 referral bonus.
Posts
