Information Security Officer

As a Technology Information Security Officer (TISO), your primary responsibility will be to ensure effective and efficient communication, coordination, and implementation of CISO IT Security requirements and decisions. You will play a crucial role in guiding the ITAO team. Your expertise will be instrumental in addressing security considerations related to cloud computing, such as data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss, and DoS attacks. Furthermore, you will be tasked with overseeing Identity and Access Management (IAM), which involves implementing a framework of security policies and technologies to restrict and monitor access to sensitive technology resources within the organization. Your familiarity with ISO27001 specifications and Control Objectives for Information and Related Technologies (COBIT) will be essential in defining and enforcing security policies and procedures that encompass legal, physical, and technical controls for managing organizational risks. In this role, you will be expected to align standards, frameworks, and security measures with the overarching business and technology strategies. It will be imperative for you to stay abreast of current and emerging security threats and devise solutions that strike a balance between business requirements and cybersecurity needs. Additionally, you will be responsible for training users on system implementation and conversion, ensuring that the IT Security strategy aligns with the CISO strategy, and translating this alignment into an operational plan for your area of responsibility. Your role will also involve integrating Chief Information Security Office initiatives, programs, and central solutions, ensuring compliance with security controls, and maintaining technical security documentation. You will act as an expert in DB Information Security Policies and procedures, manage IT audits, and collaborate with key stakeholders to address Information Technology Security risks effectively. For this position, we are seeking a candidate with 14-20 years of experience in security considerations related to cloud computing, IAM, VB.NET, Java/J2EE, ColdFusion, API/web services, scripting languages, RDBMS (e.g., MS SQL Server or Oracle), ISO27001, COBIT, and familiarity with Windows and UNIX environments. Your expertise in these areas will be vital for building and maintaining a secure IT environment and mitigating potential risks effectively.,