Job Category: Networking ,Systems, Security & DevOps Engineering
Job Number: 12264562
Akraya is an award-winning IT staffing firm and the staffing partner of choice for many leading companies across the US. We offer comprehensive benefits including Health Insurance (medical, dental, and vision), Cafeteria Plan (HSA, FSA, and dependent care), 401(k) (enrollment subject to eligibility), and Sick Pay (varies based on city and state laws).
Primary Skills: AWS/AZURE/GCP, OWASP, Cyber Security
Duration: 3 Months+ (Contract To Hire)
Contract Type: W2
This technical security leadership position reports to Chief Information Officer (CIO) and is responsible for ensuring the operations, implementation, compliance, and ongoing activities involving the protection of the enterprise information assets. The scope of responsibility will encompass establishing the strategy and overall policies, goals and procedures for the information security function at Client. The candidate will drive programs to mitigate cyber risks, strengthen perimeters, and reduce enterprise vulnerabilities.
- Implement and maintain enterprise security systems and technology.
- Develop comprehensive enterprise information security, IT risk and compliance management program.
- Develop, and maintains policy, standards, processes, and procedures to assess, monitor, report, escalate and remediate risk and security issues.
- Develop, implement and monitor an ongoing employee education program for all employees on technology risk and appropriate mitigation strategies and approaches.
- Collaborate tightly with IT Security Operations team to monitor and respond to security events, operational processes and procedures, and tools improvements.
- Stay abreast of trends and advances in cybersecurity solutions and monitor changes in legislations that may affect information security. Ensure compliance with the changing laws and applicable regulations.
- Ensure that disaster recovery and business continuity plans are in place and tested
- Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.
- Maintain a current understanding the IT threat landscape for the industry.
- Schedule periodic security audits and penetration testing.
- Constantly update the cyber security strategy to leverage new technology and threat information.
- Brief the executive team on status and risks, including taking the role of champion for the overall strategy.
- Communicate best practices and risks to all parts of the business, outside IT.
- Partner with leaders across the company, to ensure that information security efforts receive appropriate prioritization and resources.
- Take a leadership role in working across the company on security projects and provide security guidance on a constant stream of new projects and technologies.
To follow up with any questions, please contact Shashank at 408-512-2427
- Bachelors in Computer Science or Engineering with an emphasis in Information Security or a related field, or equivalent experience.
- CISSP (Certified Information System Security Professional) or equivalent.
- Knowledgeable in security trends, products and tooling.
- 7 to 10 years of knowledge and experience in Cybersecurity leadership role, including strategy and operations.
- Proven ability to contribute at both strategic and operational levels, including leading Security Incident Response program.
- Demonstrated hands-on capability and technicality across a range of security disciplines.
- Expertise in data privacy laws, access, security, release of information, or access control technologies.
- Knowledge and experience within the healthcare industry.
- Demonstrated organization, facilitation, communication, and presentation skills
- Experience and effectiveness in leading cybersecurity initiatives and projects
- Ability to assess and weigh current and evolving business risks and enforce appropriate information security measures.
- In depth knowledge of the cybersecurity rule and other government technology laws and standards. International exposer is desirable.
- Experience with contract law is preferred but not necessary.
- Have passion for real security and be able to positively spread this enthusiasm to partner teams.
If this position is not quite what you're looking for, visit akraya.com and submit a copy of your resume. We will get to work finding you a job that is a better fit at one of our many amazing clients.
Akraya is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law. Akraya is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.