Senior Systems Security Specialist

Attention! This job posting is 388 days old and might be already filled.
VW Credit, Inc. Published: April 1, 2016

<div id="textContent" class="readOnlyFrame">
<p><em><strong>Systems Security Specialist</strong> - salary grade 9, reports to Senior Manager, Information Risk, based in Libertyville, IL.</em></p>
<p>Job Summary</p>
<p><span style="font-family: Arial;">The Systems Security Specialist Senior is responsible for protecting the confidentiality, integrity and availability of VW Credit’s information system resources in compliance with all applicable laws, security best practices and company policies.  This role manages outsourced security vendors and/or security vulnerability processes. The role will also be the VW Credit interface to Security Operating Center services.  </span></p>
<div><span style="font-size: small;"><span style="font-family: Arial;"><span style="font-size: medium;">Under the direction of the Information Risk Manager and working in conjunction with the Wintel Platform team, Unix Systems team and the Network team, the Senior Systems Security Administrator will recommend, implement and operate appropriate detective and preventive security controls.</span>  </span></span></div>
<p>Job Responsibilities</p>
<div><span style="font-family: Arial;">Vendor Management (20%)</span></div>
<li><span style="font-family: Arial;">Manage vendor controls testing, including scheduling, execution, reporting and follow-up</span></li>
<li><span style="font-family: Arial;">Manage outsourced security monitoring including SLAs and other coordination</span></li>
<div><span style="font-family: Arial;">Process Management (30%)</span></div>
<ul type="disc">
<li><span style="font-family: Arial;">Management of the security vulnerability processes</span></li>
<li><span style="font-family: Arial;">Ownership of the CERT initiation and response process, including security suites on VCI devices.  Monitor web sites, mailing lists and other security related media for security advisories and distribute information to appropriate teams.      </span></li>
<div><span style="font-family: Arial;">Security Operations (30%)</span></div>
<ul type="disc">
<li><span style="font-family: Arial;">Review potential incidents to determine cause of system security-related events. Lead forensic response as appropriate.</span></li>
<li><span style="font-family: Arial;">Maintain vendor contacts and relationships to ensure timely and effective resolution of problems/failures.</span></li>
<li><span style="font-family: Arial;">Lead activities on behalf of the Technical Security Committee activity under direction of the Information Risk Manager</span></li>
<li><span style="font-family: Arial;">Manage IRM-owned tools such as McAfee EPO and Websense DLP, integrating findings with security processes.</span></li>
<div><span style="font-family: Arial;">Projects (20%)</span></div>
<ul type="disc">
<li><span style="font-family: Arial;">Confer with resource owners and determine appropriate security policies and architecture for securable network resources.</span></li>
<li><span style="font-family: Arial;">Work with IT staff to evaluate, select, install and configure security software and mechanisms</span></li>
<p>Required Qualifications</p>
<p>Required Education:</p>
<p><span style="font-family: Arial;">Bachelor’s degree related to responsibilities</span></p>
<p><span style="font-family: Arial;">Required Experience:</span></p>
<div><span style="font-family: Arial;">7-9 years, including managing outsourced security vendors, managing security vulnerability processes, operating in a Security Operating Center environment and leading cross-functional security projects.</span></div>
<p><span style="font-family: Arial;">Required Skills:</span></p>
<p><span style="font-family: Arial;">Certified Information Security Manager (CISM) or similar certification</span></p>
<p><span style="font-family: Arial;">Windows, Linux, Unix and Cisco support.  Strong exposure to server and network virtualization.</span></p>
<p><span style="font-family: Arial;">In-depth knowledge of IT security standards and processes.</span></p>
<p>Knowledge of various tools such as McAfee EPO, Vulnerability Manager and Nessus</p>
<p>Desired Skills<em>:<br />
</em><span style="font-family: Arial;">Certified Information Systems Security Professional (CISSP)  Must be met within one year of hiring.</span></p>
<p>We are proud to be an EEO employer M/F/D/V.  We maintain a drug-free workplace and perform pre-employment substance abuse testing.</p>

 upload file ... Limit reached, delete at least one file below to add more.