Info Security Exec Advisor PS1743

Anthem, Inc. Atlanta, GA
Anthem has a long history of providing our clients with world-class service. That world-class service includes a sincere, visible, and measurable commitment to protecting the privacy and security of our members' personal information in the face of dynamic and evolving threats. Information technology and cybersecurity have become the topic of more and more frequent news stories. Therefore, incumbent that providing its world-class services and being easy to do business with include the way we proactively and reactively communicate Anthem's information technology and cybersecurity capabilities and programs, both internally and with our clients.

Info Security Exec Advisor

Develops strategic and tactical plans for a comprehensive enterprise-wide information security program. Leads the development of policies, technical standards, guidelines, procedures, and other elements of an infrastructure necessary to support information security in compliance with established company policies, regulatory requirements, and generally accepted information security controls. Responsible for the selection and delivery of strategic network security, access control and secure transaction/messaging solutions.

Primary duties may include, but are not limited to:

* Establishes architecture oversight and planning for information and network security technologies;

* Leads development of an information security risk management program that includes business, regulatory, industry practices and technical environment considerations;

* Establishes strategic vendor relationships for security products and services;

* Develops enterprise-wide security incident response plans and strategies that includes integration with business, compliance, privacy, and legal constituents and requirements;

* Provides advanced level engineering design functions;

* Provides trouble resolution and serves as point of technical escalation on complex problems.

* Creates presentations and seeks IT and business management approval and acceptance of significant replacements or reconfigurations of major security technologies serving the Enterprise.

* Provides technical guidance and leadership to the technical engineers within the organization.

* Participates in the design of the enterprise architecture.

* Proposes opportunities to improve results based on targeted or continuous assessment .

* Researches relevant trends and activities in healthcare, business, competition and regulatory environments; recommends strategy adjustments.

* Participates in enterprise planning activity, including vendor assessment, technology platform selection & retirement, prioritization and integration.

* Capable of serving as technical merger & acquisition lead.

* Routinely acts as a subject matter expert for executive management.

Must be capable of providing top-tier support for 6 or more of the information security technology common body of knowledge skill sets:

1) Access Control,

2) Application Security,

3) Business Continuity and Disaster Recovery Planning,

4) Cryptography,

5) Information Security and Risk Management

6) Legal, Regulations,

7) Compliance and Investigations,

8) Operations Security, 9) Physical (Environmental) Security,

10) Security Architecture and Design,

11) Telecommunications and Network Security.

Requires BS/BA in related field; 10+ years' experience in systems administration and security aspects of information systems, computer networking, telecommunications, systems development and management; significant experience with multiple technical and business disciplines required; requires broad-based experience to plan and design highly complex systems; or any combination of education and experience, which would provide an equivalent background.

* Expert knowledge and understanding of industry-accepted data processing controls and concepts as applied to access management and network security technologies, hardware, software, data, network communications, and people.

* Security Certifications: CISSP preferred and other advanced technical security certifications (e.g. Information Systems Security Architecture Professional, Information Systems Security Engineering Professional, Certification and Accreditation or equivalent certifications).

* Program Management for security and awareness a plus.

* Experience with deployment enterprise scale security technologies and solid understanding of measuring operational maturity models a plus.

* Experience with incident handling particularly with a focus on privacy.

* CSOC experience a plus.