Location: St. Louis, MO
Type: Permanent
What are the 3-4 non-negotiable requirements on this position?
- CISSP, CRISC, CGEIT, CCNP or related advanced IT or Security certification required
- Highly Preferred: Cloud Experience
- 5+ years of experience with security capabilities and technologies, including all phases of the product/solution life cycle
Qualifications:
- Leads, plans, designs and manages information security risk initiatives in support of the core security and risk functions.
- Develops and maintains security policies, standards and processes, and applies in-depth knowledge of industry standards.
Education/Experience:
- Bachelor’s degree in Computer Science, Information Security, IT, Mathematics or other related field; Master’s degree in Computer Science, Information Security, IT, Mathematics or other related field preferred.
- 5+ years of experience with security capabilities and technologies, including all phases of the product/solution life cycle
License/Certification:
- CISSP, CRISC, CGEIT, CCNP or related advanced IT or Security certification required
Position Purpose:
- Develops and maintains the information security capability plan and roadmap.
- Establishes information security strategies and capabilities for service areas such as: identity and access management, cloud computing, user behavioral analytics, virtualization, process controls, metrics, infrastructure, applications, and data management
- Researches best practice, conducts trend analysis, and identifies gaps in developing future-state security capabilities
- Develops security capabilities, standards and requirements, and implements technology and/or process architectures to mitigate identified threats and security risks
- Provides advisory and consulting services regarding security threats and risks.
- Guides and mentors team member