This job has expired, please see additional jobs below
Senior Director
Equifax
Alpharetta, GA, United States
Job Details - this job has expired, please see similar jobs below
The Senior Director, Platform Security (Mainframe) will draw on his/her experience with mainframe technologies, risk and compliance management, and mature leadership skills to build and lead a world-class, global mainframe security team for Equifax.
Success in this role is evaluated on the basis of achieving these fundamental objectives:
• Function as the senior-most responsible person for mainframe security within Equifax, supporting IT, Data Protection, and Security colleagues with domain-specific expertise.
• Build and lead a team of architects, engineers, and system operators with mainframe expertise. Sustain platform-specific delivery of a diverse mission that includes DevOps consultation, security control design and engineering, security control operation, and incident response.
• Cultivate and maintain deep working relationships with stakeholders throughout Equifax, built on strong personal and team capability, as well as a track record of execution. Foster a powerful team culture that serves to motivate and retain high performers.
KEY RESPONSIBILITIES
• Work with internal stakeholders from Security, IT, and Data Protection teams to develop mainframe-specific security requirements that enable Equifax to manage risk and maintain compliance. Develop, implement, and operate a portfolio of process and technical controls to sustainably meet those requirements on our mainframe systems. Manage the control portfolio successfully, to include metrics and support for audits.
• Build a team of security architects and engineers with extensive mainframe security experience to advise control owners on Governance Risk and Compliance, Cyber Security, Identity and Access Management, and Secure Development teams of mainframe-specific considerations. Partner with IT teams to ensure that mainframe security requirements are cared for in the planning, development, implementation, and operation of enterprise applications.
• Build a 24 x 7 x 365 global operational capability for the mainframe platform, ensuring that all security hardware, software, and features are installed, patched, and properly configured so that they may continually be effective at securing the platform. Assist red team, blue team, penetration testers, threat modelers, incident responders, and other technical staff in achieving security objectives on the platform.
• Commensurate with the senior level of this role, the successful candidate will develop and oversee the development of strategy, project plans, metrics, and presentations, among other artifacts. S/he will make effective use of financial and human resources to achieve organizational objectives. The ability to solve complex problems independently is critical.
REQUIRED COMPETENCIES / SKILLS
• Technical proficiency in IBM mainframe system administration
• Technical proficiency in IBM mainframe security tools, to include
◦ Computer Associates Top Secret (TSS)
◦ IBM Resource Access Control Facility (RACF)
◦ Computer Associates Access Control Facility 2 (ACF2)
• Experience implementing security control objectives (such as logging, audit, access policies, disaster recovery, security configuration / hardening, etc.) on IBM mainframes
• Experience in performing security compliance and risk assessments / audits of IBM mainframes
• Experience in setting strategic targets within an area of responsibility, developing a portfolio of projects to achieve the targets. Experience applying financial and human resources to projects and successfully achieving scope, schedule, and cost objectives.
• Experience in managing a high-availability operations team, including ability to oversee development of processes, runbooks, emergency management processes, change control, etc. Willing to maintain coverage of emergency escalations 24 x 7 x 365 (to be shared with delegate(s)).
• Outstanding people leader with the ability to motivate and empathize with others. Previous experience building, leading, and retaining teams of high performers.
• Strong written and oral communications skills. Fluent capability with MS Office suite, specifically Excel, PowerPoint, and Word.
DESIRED COMPETENCIES / SKILLS
• Experience conducting penetration tests / red team attacks on IBM mainframes.
• Experience developing enterprise applications for IBM mainframes.
• Experience deploying IBM Pervasive Encryption to an enterprise environment.
• Noteworthy reputation in the security community for work on mainframe security.
• Extensive experience in information security domains extending beyond IBM mainframes.
• Current CISSP or other industry-standard information security certification.
EXPERIENCE REQUIRED
• At least 10 years of work experience in IT and Information Security combined
◦ At least 5 years working in information security
◦ At least 5 years working with mainframe administration / security
◦ At least 5 years in managerial capacity with >=5 direct reports
◦ At least 2 years leading or performing production operations
• Demonstrated experience hiring and leading high performing teams
• Previous experience at or above the Director level (or comparable)
EDUCATION REQUIREMENTS
• B.S. in Computer Science, Computer Engineering, Electrical Engineering
• We will consider applicants with other degrees if there is compelling work experience
• M.S. or M.B.A. degree desired
#LI-SH2
Primary Location:USA-Atlanta JV White
USA-Atlanta-One-Atlantic-Center
Function:Function - Security Governance and Compliance
Schedule:Full time