Director of Information Security (COE)

Job Number:16851

Position Title:

External Description:

The Director of Information Security for the Equifax Center of Excellence (COE) organization is responsible for ensuring that IT solutions are designed, built, deployed, and maintained in compliance with the Equifax security policies and standards. The candidate will collaborate with Security, IT, and Business stakeholders in developing and maintaining security technology frameworks. Additionally, this Senior Security professional will assist with identifying, prioritizing, evaluating opportunities to increase the efficiency and effectiveness of secure practices across the business unit operations and products/services through automation and use of emerging technologies and innovation techniques.

Essential Job Functions:

Report to the Information Security Officer of COE and be strategically involved in key security decision making for the Business Unit

Assist with internal consulting, advisement and assistance for all aspects of Information Security

Serve as subject matter expert in multiple security disciplines and security consultant for projects and troubleshooting efforts

Work as the subject matter expert on COE IT platforms and infrastructure

Participant in secure application and system development lifecycle activities and process assessments

Implement threat modeling, formulate application security procedures, and resolution plans

Provide technical support services in remediation of application security remediation efforts.

Work with the COE IT organization to proactively identify and address security observations/findings

Serve as subject matter expert in multiple security disciplines and security consultant for IT modernization and innovation efforts.

Evaluate and advise on policy exceptions for the business unit

Perform business process related security risk assessments

Maintain and monitor internal observations/findings for both internal customers and third parties

Perform advanced countermeasure design, development, implementation, and assessment in conjunction with Security Engineering

Lead small to mid-size security related projects to increase maturity of the Information Security program

Assist with investigation and resolution of security events, and assist with disciplinary and legal matters associated with such events

Understand how to manage a security event and crisis

Skills and Requirements:

Bachelor's degree or an equivalent combination of education and experience required

6-8 years of security and networking experiences

Experiences with programing languages (e.g. Java, JavaScript, C, C++, Python, visual basic, VBA)

Experiences with application security testing and related efforts

Understand Gramm-Leach-Bliley Act (GLBA), Sarbanes-Oxley Act (SOX), SSAE-16 attestations, ISO 27001 Standards, Payment Card Industry Data Security Standard (PCI DSS), NIST Standards, standard security practices, current and emerging privacy and security regulations.

Strong communication skills including strong verbal presentation skills. Ability to communicate security concepts to technical and non-technical audience and able to interact with all levels of the organization

Experience working in matrix environment with globally diverse team members

Ability to work under pressure

CISSP, CISM or related certification is a strong plus

Personal Qualities:

Leadership in intellectual engagement, work ethic; quality of work product

Good judgment, integrity and follow through on commitments

Team player who actively collaborates and commits to success of others.

Pitches in where necessary to support team success

Exhibits self-motivation to perform to the highest standard of excellence

Results Focused. Focuses on the critical objectives that add the most value and consistently delivers results that meet or exceed expectations

Relentlessly seeks, shares and adopts ideas and best practices in and outside the company and embraces change introduced by others

The Director of Information Security for the Equifax Center of Excellence (COE) organization is responsible for ensuring that IT solutions are designed, built, deployed, and maintained in compliance with the Equifax security policies and standards. The candidate will collaborate with Security, IT, and Business stakeholders in developing and maintaining security technology frameworks. Additionally, this Senior Security professional will assist with identifying, prioritizing, evaluating opportunities to increase the efficiency and effectiveness of secure practices across the business unit operations and products/services through automation and use of emerging technologies and innovation techniques.

Primary Location:

USA-Atlanta JV White

Function:

Function - Security Governance and Compliance

Schedule:

Full time

City:Alpharetta

Location_formattedLocationLong:Alpharetta, Georgia US

State:Georgia

Community / Marketing Title:Director of Information Security (COE)

Company Profile:

Requisition Number:J00064010

EEO Employer Verbiage:

Equifax is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.

Similar jobs you might like