Director- It Security Job in Rxlogix Corporation

General Purpose:
We are looking for an experience security leader with a hands on experience in AWS and cloud operations. A successful candidate should have excellent written and verbal skills, be organized and have expert level skills in the field of IT and Cloud Security. You will help define and enforce our security policies and procedures. You must have demonstrable experience and skills in Cloud based security and have managed and built successful security and privacy operations in the past. You must be capable of leading from the front lines, this position requires both hands on technical experience as well as management skills. Reporting to the CEO, you will be responsible for architecting and implementing our IT Security policies.

Essential Duties & Responsibilities:
• Provide leadership and technology vision to the IT Security team
• Perform internal Security Audits
• Participate in external Security Audits
• Must be a hands-on person
• Document, implement and monitor practices in adherence to IT security standards
• Knowledge of IT Security related hardware, software and vendor solutions
• Assess and improve security metrics
• Work on improving security tools and operations
• Monitor and manage IDS, vulnerability scanning & assessments
• Planning and execution of any required vulnerability audits, penetration tests and forensic IT investigations, ensuring that any outcomes improve the organisations overall IT Security
• Plan & execute BCP & DR
• Log aggregation and analysis
• Ensure compliance with any related legislation, such as the Data Protection Act ( ISO, HIPPA, GDPR standards etc)
• Manage Anti-Virus and Anti Malware
• Address security related issues and incidents
• Provide trainings on Information Security
• Support in RFPs and Bid defence

Minimum Requirements
• Good communication skills
• CISSP, Security+ or equivalent certification
• 10+ years of Cyber Security experience
• 5+ years of IT management experience
• 5+ years of AWS experience
• 3+ years of experience with Identity & Access Management tools
• 10+ years of Linux & Windows Security administration
• Experience with managing Cloud and Container Security
• Experience with Network and Application penetration testing
• Experience with Vulnerability scanners, IDS and IPS deployment and monitoring
• Experience with BCP & DR
• Experience with SIEM tools
• Experience in developing, documenting and implementing security standards
• Experience with Security Automation and Orchestration tools
• Experience with Incident Response & Management, Vulnerability Management, Patch Management
• Experience managing security operations and teams
• Experience in compliance of any related legislation, such as the Data Protection Act, ISO, HIPPA, GDPR standards etc

Additional Qualifications
• Experience with Datadog or equivalent monitoring tools (Logz.io, Splunk, Nagios, SumLogic)
• Experience with practices such as Change Management and Configuration Management
• Experience with Infrastructure as Code and tools such as Chef, Ansible, Puppet
• Experience hardening Operating Systems and Applications (Centos, RHEL, Ubuntu, Windows)
• Endpoint security management
• Experience working in GxP environments
• Experience with practices such as Change Management and Configuration Management
• Led ISO 27001 and other standard initiatives at organisation level