Information Security and Privacy Officer

NEI Global Relocation

Who we are…

NEI Global Relocation is ready to think big – are you? At NEI, we work for our client companies to relocate their employees for opportunities around the world. We do not just see this experience as getting a person from point A to point B. We are looking to be a trusted partner that can see needs before they become problems. We strive to dot every “I” and cross every “t” because we know when we do, client customers can maximize their employee’s potential.

 

Who we’re looking for…

We are looking for an Information Security and Privacy Director who will champion our program and ensure peace of mind for NEI and our client customers. You will get to work in a collaborative environment where your voice is respected and essential to our growth. What we need from you is:

  • Bachelor’s in information technology or related field or equivalent work experience.
  • 5-7 years overall experience managing company security and privacy programs.
  • Knowledgeable in information Security best practices for managing security within an enterprise organization.
  • Governance, Risk & Compliance experience.
  • Security and Privacy policy development and administration.
  • Required experience managing internal and 3rd party audits, preferably SOC 2, GDPR, and Client audits.
  • Experience in identity, data, and information management and classification.
  • Managing Disaster Recovery and Business Continuity.
  • Demonstrated ability to maintain the highest level of confidentiality.
  • Working knowledge of application, database, and technical architecture security.

 

What you will do…

  • Manage and develop security and privacy programs through security management practices, company policies, employee training, and security system measures to ensure compliance with domestic and international privacy laws.
  • Collaborate with key partners to implement, enforce, and communicate security and privacy policies and controls.
  • Serve as the primary contact for Senior Management and Clients, providing oversight for the overall security and privacy program.
  • Planning: assess people, process, and technology to identify risks and vulnerabilities.  Evaluate the effectiveness of existing security and privacy programs based on changing laws and regulations, industry security trends, vulnerabilities identified during audits, scans, and monitoring, and reviews of policies and procedures.  Identify and plan improvements to security and privacy to meet Company and Client security requirements.
  • Policies: develop policies to ensure a comprehensive Information Security and Privacy program, including Security Solutions, Security and Privacy Training, Incident Response and Management, Audits, Business Continuity and Disaster Recovery, Risk Management, and Change Control.
  • Security Solutions: identify security solutions to protect the applications, infrastructure, and networks. Ensure the effective monitoring of security across corporate networks, computers, and storage devices, to quickly identify attacks and respond to any alerts.
  • Training: manage security and privacy awareness training programs and email phishing campaigns.
  • Business Continuity and Disaster Recovery: minimize the risk of business impact from incidents by managing and practicing a comprehensive business continuity and disaster recovery plan.
  • Incident Management: manage an incident management program to review, classify, and/or mitigate incidents in accordance with the identified level of risk.  Manage the incident response to incidents, identify and implement solutions to prevent the incident from happening again, formally document the incident, and communicate the incident to internal stakeholders, external clients, and the appropriate Government and local officials.
  • Risk management: administer a risk management program to identify, classify, report, track, and mitigate risks, including a program to manage 3rd party security and privacy risks.
  • Change Control: manage a change control program to introduce technical changes in a secure and controlled manner.
  • Ensure the Information Security and Privacy role maintains the highest level of confidentiality.

Job ID: 7220

Posted 8 days ago

Share This Job