The Information Security Manager serves as the program owner and subject matter expert for all information security activities. This position is responsible for the oversight and definition of operations and software development for a variety of multi-user information security systems. This role is responsible for initiating action in response to attempted intrusions, conduct vulnerability scans, and ensure that responsible areas respond appropriately to findings to safeguard the confidentiality, integrity, and availability of information assets. In addition, this position is responsible for protecting the confidentiality and integrity of customer, employee and business information in compliance with organization policies and standards.
Job Duties & Responsibilities
Lead the Information Security program to establish and maintain security controls and ensure the company exceeds all compliance requirements with laws, regulations, and standards (SOC, ISO, SOX etc.).
Partner with internal teams on strategic and tactical plans for information security regarding major system and application changes, to ensure that information security standards are maintained, and information assets are protected.
Perform risk assessments to determine security vulnerabilities, Includes working with consultants and regulators on independent security review and company-wide audits and remediation plans.
Develop and manage information security guidelines to ensure the incident response process is executed properly.
Assist in the preparation and monitoring of system security alerts that warn systems administrators of potential viruses, intrusions, or other systems security threats.
Promote information security awareness throughout the company through training, information security awareness days, and other related activities.
Conduct research to keep abreast of the latest security issues.
Responsible for Information Security program policies.
Coordinate and facilitate monthly system, infrastructure and network patching.
Provide support, guidance and leadership to team members.
Provide ad hoc assistance as needed.
SKILLS & KNOWLEDGE
Bachelor’s degree in Computer Science, a related IT field, or equivalent work experience.
Minimum of six years of experience supporting information security in 24x7 enterprise environment.
Minimum of one of the following security certifications: CISSP, CISA, CISM, CIPP/IT, CEH, GIAC.
Minimum of two years of management experience.
Budget experience preferred.
Expert knowledge of three or more security areas: Application security, local and wide area networks, wireless networking, remote access solutions, Internet Firewalls, IDS/IPS, email systems, portals, virus protection, databases, Identity Management, mobile security, cloud security, security and privacy best practices.
Knowledge of data compliance and privacy standards and regulations as they apply to insurance and banking industries.
Experience working with Risk, Security or Audit frameworks (e.g., COBIT, COSO, ISO 27001/2, NIST 800-53, AICPA, BITS).
Experience with Identity Management and Single Sign-On implementations and designs.
Experience with security tools (e.g., Nessus, Tenable Security Center, Symantec DLP, Umbrella, EnSilo, RedHat Linux), and database security.
Experience with developing policies, standards, and procedures.
Ability to communicate technical information to both technical and non-technical audiences.
Strong analytical and troubleshooting skills.
Ability to mentor and guide team members.
Self-motivated, self-directed, and attention to detail while working with data.
Ability to effectively prioritize and execute reporting tasks in a fast-paced, results-driven environment.
Experience working in a team-oriented, collaborative environment with a diverse team of business and IT staff.
About National Mortgage Insurance Corporation
National MI is the leader in restoring trust in the mortgage insurance industry. We take a straightforward approach to both our products and practices to ensure lenders’ confidence in the loans they place with us. We move MI forward through innovation, and help more people get into homes by enabling low down payment borrowers to realize homeownership.
National MI began with a promise to restore trust in the mortgage insurance industry, and we deliver on that promise:
• Pioneering 12 month rescission relief
• Offering the best terms of coverage
• Pledging a sensible and fair underwriting approach
• Putting customers first, always