POSITION : CHIEF DATA OFFICER (Information Data Security)
EXPERIENCE : 12 - 15 YRS
- Support the supervision of staff managers, engineers, vendors, auditors, and other persons tasked with maintaining information security and supporting our practice.
- Assist in the coordination and oversight of day to day activities of the information data security function.
- Investigate network intrusions and other cyber security breaches to determine the cause and extent of the breach
- Participate in technical meetings and working groups to address issues related to malware security, vulnerabilities, and issues of cyber security and preparedness
- Perform assessments of security programs and make strategic recommendations and priority recommendations related to improvements
- Develop and deliver papers and presentations related to infrastructure security best practice
- Prepare, write, and present reports and briefings related to security engagements
- Advise on response to government notices and investigations related to cyber security and Privacy
- Develop incident response plans and procedures tailored to specific needs
- Support the development and implementation of security-oriented policies, procedures, and operating practices
- Support the continuous planning, development and implementation of a secure global infrastructure designed to protect against all matter of threat to firm resources and data
- Interface with firm clients to manage compliance with Outside Counsel Guidelines and regulatory requirements. Regulatory compliance focuses on Insider Trading.
- Manage relationships with third party providers of services to the firm for negotiation of contract language and evaluation of third party risk related to privacy and security practices
- Support the company's information security and privacy education program and ensure yearly reeducation is completed by all staff
- Oversee the development and implementation of hardening procedures for the firm's servers, workstation (desktops and laptops) and mobile devices
- Maintain significant knowledge of Cyber threat actors, attack methodologies and mitigation/remediation methods
- Additional duties as assigned.
QUALIFICATIONS
- BTech & MBA from top B Schools with 12+ years of experience in information security positions, with 5+ years- experience in a role providing information security or information risk management consulting services preferred
- 5+ years of experience in a professional services organization (such as a law firm, accounting practice, or similar data-intensive operation) preferred
- Experience overseeing an ISO 27001 certification program, with certification as an ISO 27001
- Significant experience managing incident response, computer crime, or forensics investigation programs required
- Significant knowledge of cyber threat actors and thereby attack methodologies are required
- Significant knowledge of information security technologies, networking and network architecture
- Strong written and oral communication skills
- Proven ability to manage competing priorities and work under pressure
- Current information security certification as a GIAC, CISSP, CISM, CIPP or CFE preferred.
- A global perspective on privacy, security, and data protection issues and trends.
Didn’t find the job appropriate? Report this Job