| Location | |
| Country: | United States |
| State/Prov: | California |
| City: | Costa Mesa |
| Position | |
| Position/Title: | Director, Information Security |
| Position Type: | Permanent F/T |
| Closing Date: | 2008-04-11 |
| Job Description: |
Business Information Security Officer (BISO) A BISO is responsible for leading the effort to integrate information security best practices into the procedures that support Corporate Information Security Policies and Standards. The individual will develop a plan for delivering information security service projects including training, awareness and product implementations and act as the subject matter expert on the ISO 17799 standards used as the basis for company information security policies. This role is primarily a business facing position with cross-functional, cross-organizational responsibilities focused on safeguarding company information and services. It requires executive level acumen to be able to work independently with business line presidents and executive staff to explain complex security issues in an understandable and meaningful manner. Responsibilities include: Focusing on the business unit to develop an information systems risk management program. Requires executive level acumen and the ability to make far reaching decisions on cost versus risk balance. Influencing business unit risk reduction by working to continually improve information and physical security processes and procedures. Assessing business area compliance with information security policies, standards and procedures and leading remediation efforts as appropriate. Building a strong network of information stewards, information custodians and system equipment stewards to assist with compliance efforts. Collaborate with Business Information Security Officers from other business units to ensure consistency and share best practices across the enterprise. Strengthening and increasing awareness related to integrating information security best practices into all aspects of the company environment. Developing training modules to support information security standards and procedures related to specific business objectives, security product implementations and best practices. Advising company executives about information security related topics including compliance with legal and regulatory requirements as they relate to information protection. Leading pre-acquisition reviews and post-acquisition assessment efforts for business unit merger/acquisitions to prepare for the integration with company systems, audit and business functional areas and other areas as appropriate. Presenting to executive management group and division level staff. Candidate must be experienced in direct influence of executive management and presenting in front of large organizations. |
| Job Requirements: |
Bachelor's degree Advanced degree a plus CISSP and/or CISM certification a plus Six Sigma Black Belt certification desirable PMP or equivalent project management certification desirable 12 or more years project/program management experience in dynamic, multi-national corporation Proven experience assessing compliance to information security policies, regulations and principles required Proven track record in managing information security projects and communicating project status to all levels of management Financial services or data aggregator experience Experienced and resourceful matrix manager For more information on Experian, please visit www.experiangroup.com. |
| Contact Information | |
| Contact Directions: | Email resume and salary history to meredith.beamish (at) experian (dot) com [email concealed] for consideration. All inquiries will be kept confidential. |
| Company: | Experian |
| First Name: | Meredith |
| Last Name: | Beamish |
| Title: | Executive Recruiter |
| Email: | meredith.beamish@experian |