Director, IT Security and Operations

Voted one of Philadelphia's Best Places to Work 5 Years in a Row....!!

This is a unique opportunity with a forward moving full-service broker-dealer and registered investment advisor organization which, serves the diverse and changing financial needs of more than 235,000 individual investors, and representing over $23 billion in assets.

Job Description

Responsible for managing all aspects of Lincoln’s IT Security, including planning, design, policies, controls, implementation and maintenance. Includes the safeguard of company data on servers, PC’s, and databases against accidental or unauthorized modification, destruction, or disclosure through the use of hardware, software, and policy. Also responsible for Lincoln’s IT operations, which includes the management, administration and maintenance of the company’s AS400 environment, as well as taking primary responsibility for company’s business continuity plan.

Responsibilities:

IT Security:

• Assist in the development and execution of information security strategy and action plans.

• Provide guidance and recommendations regarding prioritization of investments and projects that mitigate risks, strengthen defenses and reduce vulnerabilities.

• Research, evaluate, design, test, recommend and plan implementation of new or improved information security controls, tools, processes, software or devices.

• Coordinate security assessments of internal and external facing information services; guide their compliance with company policy and customer requirements

• Oversee information security risk assessments of vendors, contracted services and other 3rd party services providers

• Lead investigations of and response to information security incidents

• Monitor compliance with security controls and communicate unresolved security exposures, misuse, or noncompliance situations to management

• Understand potential and emerging information security threats, vulnerabilities, and control techniques and assist IT and business staff in understanding and responding

• Assist in the response to security questionnaires, RFP responses, audits and contract reviews.

• Review, maintain, and update security policies

IT Operations

• Manage a team responsible for company’s AS/400 assets, including administration, configuration, security, job management, and backup/restore operations.

• Develop policies and controls to ensure efficient and effective IT Operations.

• Lead company’s IT Business Continuity operations; including, strategic planning, development, outsourcing, testing, and execution.

• Performs other related duties as assigned.

Qualifications

• Expert' technical knowledge in logical and physical security in application, operational, facility, network and computer (server, workstation, mobile, etc.) security.

• Hands-on, technical experience in one or more of the following areas: computer and network security; vulnerability testing; intrusion detection, prevention, correlation, and analysis; security monitoring, or computer forensic analysis.

• Prefer one or more unexpired IT Security credentials or certifications; such as, CISSP, CEH, CompTIA Security+, or GIAC Security Essentials.

• Knowledge of regulatory and compliance requirements, such as SSAE-16 SOC 1.

• Prefer knowledge of business continuity concepts and best practices.

• Prefer knowledge of AS/400 management, operations and administration.

• Proven experience assessing risks, designing and mitigating security and control practices, influencing the culture of a company through training and education, coordinating with information and business on security issues and practices, monitoring compliance, and enforcing policies.

• Proven analytical and critical thinking abilities.

• Excellent interpersonal and communication skills; ability to communicate technical issues to technical and non-technical people.

• Ability to work on weekends and after-hours, as necessary and on an unscheduled basis to investigate security incidents or during emergencies.

Skills:

• Strong leadership, problem-solving, and analytical skills.

• Ability to code under pressure.

• Troubleshooting and problem-solving skills

• Prioritize multiple tasks effectively

• Adaptability to change

• Oral and written communication

Education:

Bachelor’s degree in a related field or the equivalent combination of education and experience.

Certification/Registration:

Additional Information

Compensation for this role will be commensurate with experience. To apply with interest, please provide an updated MSWord version of your resume and salary range.

#J-18808-Ljbffr