Director of Information Security
Location:
Mountain View , California
Posted:
December 17, 2017
Reference:
39086
About Symantec: Symantec Corporation (NASDAQ: SYMC) is the global leader in cyber security. Operating one of the world's largest cyber intelligence networks, we see more threats, and protect more customers from the next generation of attacks. We help companies, governments and individuals secure their most important data wherever it lives

Essential Duties and Responsibilities:
  • Responsible for working under the direction of the Chief Information Security Officer in all aspects of planning, maintaining, and managing security policy governance, risk management, third-party security, and cloud security governance.
  • Responsible for the development of security governance and risk management in terms of continuous monitoring, executive reporting and enterprise risk management.
  • Working with lines of business to research technical regulations that have potential impacts on the business and its product and create action plans to ensure compliance by the required date.
  • Provide input to the Chief Information Security Officer and other Security leaders for enhancing the information security strategy when necessary.
  • Manage information security personnel responsible for risk and compliance activities.
  • Manage information security risk activities including conducting annual and project risk assessments, and third-party assessments including managing remediation activities.
  • Provide guidance on work product and acting as an influencer for following best practices.
  • Assist business leaders in understanding and implementing security policy objectives in ways that are cost effective, and align with business objectives. Provide security input for business procedures, and new projects.
  • Evaluate security controls to ensure effectiveness and compliance, including managing the security control remediation efforts.
  • Participate in internal security assessments.
  • Operate the third-party security management program.
  • Stay current on security industry trends, attack techniques, mitigation techniques, and security technologies by attending conferences, networking with peers, and other educational opportunities.
  • Mentor and train less experienced information security staff.

Qualifications and Requirements:
  • Bachelor degree in information Systems, Information Technology, Computer Science, Accounting or Engineering or related discipline (or professional experience working in Enterprise IT) or equivalent experience.
  • 10 years' experience in an information security related role, such as security analyst or security auditor
  • 6 years' experience in a management or supervisory position in information security
  • 5 years' experience conducting security control assessments or audits
  • 5 years' experience managing the implementation or enhancement of security controls across a diverse business
  • Deeply familiar with PCI, Sarbanes Oxley (SOX), NIST cybersecurity framework, ISO 27000 security standards, and data protection regulations and requirements
  • Strong problem-solving skills, including the ability to develop innovative risk mitigation solutions that address core issues
  • Versed in enterprise risk assessment methodologies
  • Strong written and verbal communication skills
  • Experience with deploying and/or managing enterprise Governance, Risk, & Compliance (GRC) technologies

==================== ====================
Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.

==================== ====================
Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.

A little about us:
Join the leader in cyber security. At Symantec, you will make the world a safer place by helping people, businesses, and governments protect and manage their information so they can focus on achieving their goals.

Know someone who would be interested in this job? Share it with your network.