Returm to Careers.

Information Security Manager / Tech Lead

Washington DC Area

Date Posted: 7/16/2010

Type: Temp to perm or contract

Responsibilities

• Provides effective management and technical direction over their assigned Information Security unit.
  
  
• Assures the appropriate level of technology, staffing, skill levels, and processes required to deliver high-level information security policies, procedures and solutions to ensure the confidentiality and integrity of organizational and customer assets.
  
  
• Manage the technical research, testing and implementation of state-of-the-art security solutions across multiple platforms and systems. Propose organizational initiatives to identify and resolve information security issues. Recommend adjustments to policies and procedures.
  
  
• Works with staff within a business unit to execute short and long-term business plans and objectives.
  
  
• Assists in preparing and managing Information Security unit budgets and operating plans. Builds, develops, and maintains relationships with internal and external customers, and vendors to formulate solutions to organizational and customer system issues related to information security.
  
  
• Communicates customer needs and suggestions for addressing them to staff and peers to bring about changes that will better meet customer needs. Takes action or generates alternate solutions to resolve problems or situations.
  
  
• Clearly communicates business unit/department/organizational goals to staff and works with staff to translate them into specific performance goals.
  
  
• Coaches staff on successful work behaviors. Provides timely feedback to individual staff on their performance.
  
  
• Recommends promotions, merit increases, and coordinates staff training to achieve development plan objectives and to meet business unit goals. Makes effective hiring, disciplinary action, and termination decisions.
  
  
• Mentors future leaders in the unit and provides opportunities for leadership development and management succession.
  
  
• Initiates action to improve business unit productivity, quality, supply, and workflow. Researches and maintains currency regarding information security issues, solutions and potential implications for organization.
  
  
• Provides input into the design efforts of critical projects and implements newly developed or revised systems or initiatives. Aids in gaining commitment of management to support and fund new programs and development. Serves as an effective role model for the company and department.

Job requires a bachelor degree in Information systems or related field or an equivalent combination of education and experience from which comparable knowledge and skills may be obtained and demonstrated supervisory and leadership experience of teams of 5-20 persons with more than five years of direct, hands-on computer security experience. Position also requires experience developing and implementing processes, both manual and automated, demonstrated good communication skills, demonstrated good organizational skills with respect to time management and work production, CISSP or other industry recognized security certification, and demonstrated knowledge of ISO 17799 and ISO 15408 standards.

The Information Security Manager studies and understands business needs, participates in strategy sessions, understands technology limitations/features and sets expectations, including hardware, OS, databases, n-tier components, interactions between all components, new releases and migration impacts. The Information Security Director Associate’s main responsibility will be to act as the lead engineer in the implementation of the Oracle Identity Management application. The project entails a migration from the Sun Identity Management System to Oracle IdM.

Responsibilities include understanding and devising a migration from Sun to Oracle, working with other Information Security lead engineers, and a development team to implement the Oracle Identity Management product. Other projects being developed in conjunction with the identity management project are a password management tool and an access recertification tool. This position will be responsible for reviewing all aspects of security projects including implementing new systems, integrating existing and new systems, and redesigning existing systems to work in new ways by re-architecting or re- engineering their purpose.

Other Possible Duties:

• Researches new features, software and tools
  
  
• Prepares, oversees and coordinates database and application designs
  
  
• Defines, engineers and inspects integration solutions
  
  
• Creates and enforces development standards and processes (coding, naming, data access, documentation)
  
  
• Creates and enforces architectural and engineering standards for security, availability, replication, storage and configuration management
  
  
• Creates and enforces design and development standards and will be responsible for reviewing designs and hosting code review sessions
  
  
• Key contributor to logical & physical data models when needed
  
  
• Ensures Metadata is properly defined (data sources, business rules, data rules, extract rules, transformations)
  
  
• Sets ETL standards
  
  
• Ensures consistency across implementations (conformed dimensions, data cleansing, data integrity, data quality)
  
  
• Defines data archive/purge standards
  
  
• Prepares presentations and whitepapers

The ideal candidate will possess the following credentials:

• Bachelor's degree in Computer Science, Engineering, or related discipline, or equivalent extensive and related experience.
  
  
• 7+ years of experience in the development of distributed, mission critical applications in heterogeneous environments/architectures for multi-user systems.
  
  
• 3+ years of technical leadership and architecture and engineering experience.
  
  
• Strong ability to develop technical specifications.
  
  
• Solid experiences in relational databases (DB2, Oracle, SQL Server) and database scripting (e.g. PL/SQL).
  
  
• Experience with and a solid understanding of directories including X.500 and LDAP standards
  
  
• Experience and knowledge of security encryption methods.
  
  
• Understanding and experience with identity management, access management and web access management.
  
  
• Understanding of certification practices related to security access.
  
  
• Experience and understanding of role based access.
  
  
• Solid understanding of mechanisms required for satisfying architectural attributes for a system and correlating those requirements into engineered solutions.
  
  
• Strong leadership capabilities.
  
  
• Strong written and verbal communications skills.
  
  
• Have an aptitude to learn and apply new technologies.
  
  
• Ability to interact and communicate effectively with internal and external clients as needed to clarify business, operational, or technical requirements.
  
  
• CISSP certification a plus but not required.
  
  
• Candidates with experience in Financial Services industry knowledge a plus!

Why Join Our Team at Summit2Sea?

• We are owned and run by consultants. Thus, Summit2Sea treats our associates as we would like to be treated: with fairness, respect and integrity.


• We offer top-tier compensation for expertise.


• We foster career and skill development options to facilitate continual career growth with challenging assignments.


• As a small company, you’ll have the opportunity to explore different business disciplines that fit your interests and talents. You’ll gain a vast array of experiences whether it’s contributing to sales proposals, marketing, recruiting or attending a conference.

Apply Now

If you have the experience and you want to join our team on a permanent or temporary basis, please email us a copy of your resume and a summary of your experience.

Returm to Careers.