Security & Compliance Manager Passkey
THIS JOB HAS EXPIRED Passkey, a cutting edge technology firm, has a need for a Security Compliance Manager in the Boston area. Passkey is seeking a fulltime Security Risk and Compliance Manager. We are looking for someone who is comfortable being hands on with networking, Windows, Linux/UNIX. A candidate with a CISSP as well as an MCSE or CCNA would be ideal.
Ensure the security and compliance of all of Passkey?s networks, computer systems, and processes. The security & compliance manager will be responsible for designing, creating, and managing the information security framework for the company and overseeing all related compliance and security efforts for the company. This includes performing security monitoring, vulnerability assessments, governance efforts, application security, identity and access management, internal and external audit functions, development and oversight of internal security awareness efforts. Need hands on and recent experience with control validation, creating controls, network scan knowledge, and web application exploitation.
Must have solid knowledge of security standards including PCI DSS. Strong organizational skills, must be a good team player, needs to be self-motivated and willing to learn new skills. This person needs to be a disciplined security professional with experience related to current compliance standards, yet willing to assist the IT team in all areas, including operational tasks related to security and on-call support
Oversee the company?s PCI DSS compliance and yearly certification, assist with response to customer compliance enquiries, support and oversight of internal, external audits, and network scans. Coordinate system and firmware patches to meet security requirements, review of security related logs. Schedule and oversee all compliance related tasks, develop and schedule internal training to ensure staff members are properly educated on security procedures and compliant development methods. Review and revise corporate security policies and procedures. Perform corporate risk assessments; review and test incident response plans. Assist in the development, review and testing of the corporate disaster recovery plans and business continuity.
Minimum 7+ years direct work experience
Knowledge of current web application exploits
Experienced with a variety of security tools
Solid knowledge of cyber-security best practices.
Formal education (Bachelors Degree - in Computer Science/ Information Systems / Engineering) is a plus
List of desired compliance standards:
Massachusetts data privacy law
Safe Harbor Framework
Good communication skills
UNIX/Windows experience required
Ability to work well alone or in a group
Experience / Exposure to team projects is required
Resume with references are required
||Waltham, MA |
THIS JOB HAS EXPIRED