Job Summary: Administer the Enterprise-wide Information Security Program. Reports to the Corporate Risk Manager. Function: Support the management of risk for the company by ensuring that corporate data is protected from unauthorized change or disclosure and employees are educated about the significance of their participation in risk management. Scope: This position has responsibilities in areas across the enterprise and multiple delivery platforms. These areas include, but are not limited to Mainframe, LAN, Internet, and Communication security. This position is not responsible for the actual administering or approval of access. Essential Responsibilities: Develop and publish enterprise-wide security policies, standards, procedures, and guidelines. Develop and administer procedures for maintaining enterprise-wide security policies, standards, procedures, and guidelines. Enforce the enterprise-wide security policies, standards, procedures, and guidelines by establishing a process for monitoring compliance. Participate in the evaluation of new systems to identify security risks and recommend changes to address the identified risks. Participate in addressing security risks identified in existing systems. Serve as a consultant providing information and guidance on security issues to internal business units such as Security Coordinators, Managment, Audit, and Realty. Assist in the development of an enterprise-wide security awareness program, including training. Implement an enterprise-wide security awareness program and coordinate associated training. Routinely report to the Corporate Risk Manager on the status of the Enterprise-Wise Information Security Program. Perform staff administrative duties. Additional Reponsibilities: Position requires on-going education to remain current in the security/recovery fields. Knowledge, Skills and Abilities: Knowledge and previous experience in data security. Strong analytical and technical skills. Good written and verbal skills. Training and Experience: 5-7 years experience in Data Processing. 5-7 years experience in Risk Management. Baccalaureate degree in Computer Science or equivalent area of concentration or related job experience.
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:22:32 PDT