Security Officer and Architect

Description

Job Description Knowledge and Experience
The qualified candidate will have Must work well within a team environment and be results driven to achieve organizational goals Minimum of 8 10 years of relevant information technology 5 6 years demonstrated experience with IT security risk, defenses and security technologies. Special licenses, other education, certification or professional association memberships CISSP Certified Information Systems Security Professional Demonstrated experience in the design, development, and implementation of security information processes, procedures, controls, and solutions. Demonstrated adaptation to changing business needs and the ability to work in a variety of different business situations. Education Minimum Bachelors Degree with a desired emphasis in Computer Science, Information Technology, or Computer Engineering. Postgraduate degree in Computer Science, Information Technology, or Computer Engineering; or MBA desirable. Proven project management skills with experience in a formalized process and the ability to successfully manage multiple projects at one time. Familiarity with applicable legal and regulatory requirements, including, but not limited to, the U.S. SarbanesOxley Act, the U.S. Health Insurance Portability and Accountability Act (HIPAA), NERC/FERC, DHS. Strong leadership skills and the ability to work effectively with business managers, IT engineering and IT operations staff. The ability to interact with Verso personnel, build strong relationships at all levels and across all business units and organizations, and understand business imperatives. A strong understanding of the business impact of security tools, technologies and policies. Excellent verbal, written and interpersonal communication skills, including the ability to communicate effectively with the IT organization, project and application development teams, management and business personnel; indepth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls; an excellent understanding of information security concepts, protocols, industry best practices and strategies. Experience working with legal, audit and compliance staff is highly desired. Track developments and changes in the digital business and threat environments to ensure that these are adequately addressed in security strategy plans and architecture artifacts. Evaluate the statements of work from these providers to ensure that adequate security protections are in place. Assess the providers' audit reports (or alternative sources) for securityrelated deficiencies and required user controls, and report any findings to the Director of IT Security. Experience managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, SIEM and log management technology Fullstack knowledge of IT infrastructure Applications Databases Operating systems (Windows, Unix and Linux) Hypervisors IP networks (WAN, LAN) Storage networks Backup networks and media Experience with IAM technologies and services (e.g., Active Director, LDAP, Amazon Web Services' [AWS'] IAM) Strong working knowledge of IT service management (e.g., ITILrelated disciplines) Change management Configuration management Asset management Incident management Problem management