Information Security and Assurance Specialist Ping Identity
THIS JOB HAS EXPIRED Job Summary
Position is primarily responsible for the creation, maintenance, enforcement and audit of security policies and procedures designed to safeguard the integrity of and access to enterprise systems and files. Responsible for coordination of all security efforts within the Company, specifically working with Information Technology and Legal. Position will lead SSAE16 audit and certification efforts and will be responsible for annual compliance. Position may eventually lead ISO27K audit and certification efforts. This person will maintain knowledge of changing technologies, policies and security practices in similarly situated companies industry wide, and provide recommendations for adapting new technologies, policies and practices. This position recognizes and identifies potential areas where existing security policies and procedures require change, or where new ones need to be developed. This person will provide management with risk assessment and sec urity briefings to advise them of critical issues that may affect corporate security objectives or critical issues that may be driven by customer requirements. This position will also evaluate and recommend security products, services and/or procedures to enhance productivity and effectiveness. This position may also assist with security awareness programs and provide education on security policies and practices where needed.
Spearhead audit and certification of SSAE16 auditing standard (previously SAS70).
Maintain, communicate and enforce security policies, standards and procedures.
Ensure Company meets compliance with external requirements.
Assist in continual security awareness education and training.
Facilitate control and compliance initiatives, such as third party reviews and due diligence.
Respond as may be needed to customer inquiries regarding Company security measures.
Prepare and submit required security/compliance related reports, as needed.
Conduct risk assessment audits with client auditors and related agencies.
Keep abreast of latest security and privacy regulations and advisories.
Assist with change control processes to ensure changes are properly recorded.
Travel to alternate facilities will be required a couple times per year.
Ability to obtain and maintain a government security clearance may be required.
Associate's degree in Computer Science, Information Technology, or related field.
Understanding of modern computer network threats and attacks.
Strong technical skills to include: application and operating system hardening, vulnerability assessments, security audits, TCP/IP, intrusion detection systems, firewalls.
Strong interpersonal skills; be able to explain security implications to Company staff and customers.
Excellent written and verbal communication skills.
Must possess a high degree of integrity and trust along with the ability to work independently.
Ability to weigh business risks and enforce appropriate information security measures.
Knowledge of the HIPAA, PCI related regulations
Knowledge of NIST and FISMA requirements
The compensation and benefits will be both comprehensive and competitive.
||1099 18th Street |
Denver, CO 80202
THIS JOB HAS EXPIRED