Enterprise Security Job Description
Enterprise Security Duties & Responsibilities
To write an effective enterprise security job description, begin by listing detailed duties, responsibilities and expectations. We have included enterprise security job description templates that you can modify and use.
Sample responsibilities for this position include:
Enterprise Security Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Enterprise Security
List any licenses or certifications required by the position: CISSP, CISM, GIAC, CISA, VA, MCSA, GSEC, CCNA, ISO, ITIL
Education for Enterprise Security
Typically a job would require a certain level of education.
Employers hiring for the enterprise security job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Education, Engineering, Information Systems, Technical, Information Technology, Business, Information Security, Technology, Computer Engineering
Skills for Enterprise Security
Desired skills for enterprise security include:
Desired experience for enterprise security includes:
Enterprise Security Examples
Enterprise Security Job Description
- Drive the solutioning /testing activities in cooperation with the technology and operational teams through to launch and BAU status
- Drive RFP/RFI processes with cross-functional primes to select partners/vendors for new product development initiatives where applicable
- Prioritization and optimization of program delivery activities with business and technical teams
- Obtain OPEX and CAPEX costing as input into business cases, scoping and final capital requests and perform ongoing cost management related to the product development and delivery
- Apply a customer experience lens to all new product launches and through the product lifecycle
- Ensure customer experience guiding principles and digital focused requirements are embedded in new product launches
- Analyzes existing processes, standards, policies and/or equipment and makes process improvement recommendations to leaders ensuring compliance with laws, rules and regulations while managing business risks
- Monitors and evaluates the effectiveness of the enterprise's information security safeguards to ensure they provide the intended level of protection
- Develops security compliance processes for external services
- Inspects continuous monitoring results to confirm that the level of risk is within acceptable limits for the software application, system, or network
- Bachelor's degree (B.A.) and equivalent work experience
- Prioritize and manage team workload in order to ensure effective resource utilization, deliver quality results and meet timelines
- Bachelor’s Degree in Computer Science, Engineering or a related technical field IT software development project management or leadership experience
- Prior insurance operations background
- Ability to effectively lead and manage a diverse team of network and security engineers
- Capable of sound, independent judgment
Enterprise Security Job Description
- Coordinate and collaborate with various business units across the organization (HR, Legal, IT, Compliance, HSE, ) in order to deliver risk based security solutions across the enterprise
- Define standards for the architecture estate and provide support for development of solution architecture and provide guidance to ensure compliance
- Accountable for the overall fit of the solution recommendation and business process, information and data design
- Understand current emerging security threats
- Identifies capability development opportunities to exploit or mitigate cyberspace vulnerabilities
- Performs security & privacy reviews and identifies gaps
- Manages cross functional teams on information security initiatives
- Manages the information security data sources to maintain organizational situational awareness
- Assists with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems and processes)
- Trouble-shoots complex, cross-business issues within existing security and privacy protections
- Self-directed and self-motivated with ability to take initiative
- Effectively collaborate with all levels of management and staff across the enterprise
- Excellent inter-personal, negotiation, communication (verbal and written), and presentation skills
- Strong management skills including process creation and change management
- Ability to formulate stakeholder assessment, engagement and obtain buy-in strategies and execution
- Building strong interpersonal relationships, promoting a team-focused culture with strong shared goals & accountabilities, and influencing outcomes through leadership and persuasion
Enterprise Security Job Description
- Assist in the evaluation and implementation of ISM products and procedures as determined by management to enhance security productivity and effectiveness
- Evaluates the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvement
- Accountable and responsible for certification of Enterprise Systems Crown Jewels - ensure identified applications are breach resistant and breach ready
- Manage security on all Enterprise Systems Platforms and Applications by conducting assessments / audits, driving remediation and continuous improvement
- Promote Applications Certification Framework / Process and assist ES program, platform and E2E Service Managers in obtaining certification for new applications or changes which require certification or re-certification
- Act as first responder / support during critical (high) incidents identified by SOC or other sources as it relate to Enterprise Systems
- Identify opportunities to expand the SOC coverage for ES platforms and Applications
- Evangelize and support security programs, policies, KPIs
- Manage continuous awareness
- Ability to perform secure application code review, and coordinate with development teams to advocate secure coding practices
- 10-15 years in the industry with most recent 5-7 years in network leadership/management role
- Experience in assessing new opportunities and performing necessary due-diligence around technical, operational and financial impacts
- Has successfully deployed and managed multi-vendor distributed systems infrastructure in a large and diverse environment
- 7+ years leading an engineering function
- 5+ years leading a network security engineering or similar team
- Proven record of successfully executing to a strategic vision
Enterprise Security Job Description
- Liaise with the vendor management (VM) team to conduct security assessments of existing and prospective vendors, especially those with which the organization shares intellectual property (IP), regulated or other protected data
- Champion all aspects of Cybersecurity Incident Response mechanisms
- Work to understand the enterprise architecture and communicate with security architecture teams to ensure that IR and Data Protection security standards are current and upheld
- Serve as the IR and DP subject matter expert, trusted advisor
- Manage, lead and develop the cyber security team
- Develop, refine and ensure that disaster recovery and business continuity plans are in place and tested
- Develop, review and approve security policies, controls and cyber incident response planning
- Coordinate with business systems to develop and improve a secure software development lifecycle
- Ensure cyber security policies and procedures are communicated to all personnel and that compliance is enforced
- Provide training and communicate best practices and risks to all parts of the business
- Ability to structure, organize and optimize teams and individual associates
- Strong budgeting and financial skills, detail-oriented
- Negotiation and diplomacy skills for interfacing with customers and vendors
- Strong passion for technology and a “hands on” approach
- Works well in a collaborate environment and possesses a positive attitude
- Minimum 12 years experience in IT security, compliance and risk management, including privacy, controls
Enterprise Security Job Description
- Interface with IT and business management, CISO, IT architecture, IT and business risk, SOC, Threat Intelligence, and IT solution teams
- Work with vendor management to complete vendor programs of prospects
- 7+ years in the information security domain
- Proven experience as a system security engineer or information security engineer
- Experience in building and maintaining security systems on a global scale
- Hands on experience in designing, installing and monitoring global security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc
- Good understanding of frameworks such as SOC, ISO 17799/27001/27002, NIST, GDPR and other relevant compliance such PCI, HIPPA, SOX, NERC, FISMA, FFIEC and GLBA and others that are required for Security Information and Event Management
- Technical knowledge and experience with application security, content filtering, network protocols, access controls, encryption, and 2 factor authentication technologies
- Hands on knowledge of incident handling/response, intrusion detection and analysis, intrusion protection, and vulnerability assessment and remediation
- Experience with training staff on network and information security procedures
- The candidate must have a minimum of fifteen years of full-time, progressive experience as an Enterprise Engineer in the development of enterprise security systems
- Understanding of security, networking and cloud technologies, ability to learn new technologies quickly
- Experience with high level design architecture, security technologies, Networking, web services and SOA Understanding of encryption and obfuscation
- Minimum 5 years of experience in relevant info security technology or related field
- Demonstrable experience with leadership role on at least one large project implementation
- Certifications in Information Security and Information Management, CISM, CISSP, CISA