- Assists in carrying out the VP of Security and Compliance responsibilities in system security planning.
- Responsible for developing and implementing company-wide Information Security systems, and Business Continuity/Disaster Recovery (BC/DR).
- As changes occur in the existing IT system environment (e.g., expansion in network connectivity, changes to existing infrastructure, organizational policies, and introduction of new technologies), the IT Security Engineer uses the Risk Management process to identify and assess new potential risks and implement new security controls as needed to safeguard IT systems.
- Identify, evaluate, and minimize risks to the systems that support the enterprise mission.
- Act as consultant in support of senior management to ensure that security activities are taking place on an appropriate ongoing basis.
- Facilitate through written policies, procedures and training the incorporation of security into all business units.
- Facilitate the execution of appropriate BC/DR principles into all business units.
- Ongoing project and systems integration responsibilities in coordination with departments, vendors, subcontractors, and clients.
- Coordinates the development, review, and acceptance of system security plans with information system owners, information system administrators and users.
- Provide ongoing support for organizations' security programs.
- Provide ongoing support for organizations' risk management programs.
- Facilitate the incorporation of security principles into business units.
- Facilitates the execution of appropriate BC/DR security principles into the physical facilities.
- Supports enterprise policies as they relate to Information Security.
- Develop documented security policies and procedures.
- Monitor industry standards as they relate to Information Security.
- Publish written and electronic security policies, standards, and training.
- Implement technical standards as they relate to policies and procedures.
- Coordinate the audit and remediation of annual & quarterly security reviews as they relate to IT security systems.
- Supports Compliance and Audit requirements.
- Develop documented security audit policies to maintain required compliance.
- Publish and deliver security policies, standards, and training.
- Monitor technical standards as they relate to security compliance and audit requirements.
- Coordinate the audit and remediation of annual & quarterly security audit results as they relate to IT security systems.
- Identify and remediate facilities security issues and requirements as they relate to compliance with both industry and client standards.
- Supports Business Continuance & Disaster Recovery initiatives and maintenance.
- Implement and provide ongoing administrative support of the BC/DR Framework.
- Facilitate implementation of appropriate BC/DR principles in physical facilities.
- Agrees and adheres to Data Dimensions code of professional ethical conduct.
- Support the work of, and perform in the absence of, Security Engineer duties.
- Required to attend mandatory meetings and trainings, work scheduled overtime with minimal notice, and perform other duties as assigned per business needs.
|