Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Information Security Manager

S

Sphere

Information Security Manager

Santa Ana, CA
Full Time
Paid
Similar Jobs
  • Responsibilities

    Job Description

    ABOUT THE COMPANY Sphere, a leading provider of integrated secure payment solutions, develops and maintains technology-oriented merchant service solutions in the electronic payment and risk management industry to accommodate merchants of all sizes. We offer a dynamic, fast paced environment where we are dedicated to helping our employees succeed, as well as offer a generous benefits package including a no-waiting-period health insurance program.

    JOB DESCRIPTION The Information Security Manager (ISM) will be responsible for leading the information security function and ensuring technology projects are implemented in accordance with relevant industry and government regulation and industry best practices. The role is accountable for securing enterprise information, including sensitive payment data, by identifying network and application security requirements, planning, implementing, and testing security controls and procedures. This position is also responsible for auditing existing systems, ensuring regulatory and audit compliance, satisfying client due diligence requests, implementing new security policies, and performing regular review of existing policies. While the role is internally focused, the ISM will occasionally interface with clients in response to due diligence requests or Requests for Proposals.

    DAILY TASKS

    • Work closely with Information Technology to identify and mitigate risks, perform security reviews, and design best of breed security practices and procedures.
    • Design, implement, execute, and manage enterprise-wide security solutions to address Information Security needs as they are identified and prioritized.
    • Propose, design, plan and execute strategic and tactical operational security objectives
    • Analyze threats and current security controls to identify gaps in the company’s security posture
    • Monitor changes and trends in the threat landscape to enable proactive security controls
    • Assist in the development of information strategy/technology roadmaps and metrics/measures packages.
    • Coordinate and manage 3rd party vulnerability assessments, penetration testing, remediation activities, and post-remediation re-testing.
    • Communicate threat intelligence and security performance metrics to the Executive Team and Board of Directors

    THE IDEAL CANDIDATE WILL HAVE:

    • Bachelor’s degree in Computer Science, Information Security, or a related field from an accredited college or university
    • CISSP, GIAC, CISM, CISA, or similar security certifications
    • Five (5) years of progressive work experience in Information Security, Cybersecurity or IT Governance and Compliance.
    • A solid grasp of security standard methodologies
    • A market understanding of industry trends for cybersecurity, risk, threat intelligence and governance
    • Architecture and Security management
    • Securing network and cloud environments
    • Experience with the regulatory compliance mandates such as HIPAA, CCPA, PCI DSS and similar requirements
    • Ability to build and maintain strong relationships across departments/teams, confront challenges in a constructive fashion and influence others through consensus-building techniques.
    • Strong organizational skills, including the ability to adhere to cybersecurity processes, and tools, and to keep the focus on multiple tracks of work and open issues in parallel.
    • Strong research, analysis, analytical, problem-solving and process development skills.
    • Familiarity with security integration into the software development life cycle and associated tools
    • Basic understanding of operating systems (Windows, MacOS, Linux, IoT), risks, and platform security measures
    • Experience managing security for mobile assets, as well as those connected to the corporate environment.

    REPORTING: The Information Security Manager will report to the Director of Corporate Compliance and Security. 

    LOCATION: California, Colorado, and remote work available

    Note: Successful applicants must submit to a pre-employment background check and drug screen

    Please send resume with cover letter and salary requirements to HR@SphereCommerce.com with subject “Information Security Manager.”

    Company Description

    Sphere, powered by TrustCommerce, is a leading provider of end-to-end integrated payments, security software, payments gateway and merchant acquiring products and services. Sphere serves a variety of companies from large, complex enterprises to small local businesses across a range of end-markets, including healthcare, restaurant, retail, parking, education, transportation, and insurance. We offer a dynamic, fast-paced environment where we are dedicated to helping our employees succeed, as well as offer a generous benefits package including a no-waiting-period health insurance program.