This site uses cookies. To find out more, see our Cookies Policy

Director of Security Assurance in Malvern, PA at Signature Consultants

Date Posted: 3/13/2019

Job Snapshot

Job Description

Director of Security Assurance Summary:

Signature Consultants is seeking a Director of Security Assurance for an opportunity in Malvern, PA. The Director of Security Assurance will identify and eradicate software vulnerabilities, and be empowered to sit at the table with CIOs and modernize our approach to Assurance in an inclusive environment that welcomes diversity of thinking and input from all voices. IT leaders will seek your expertise to drive error-free coding and ensure our client’s systems and computing infrastructure are securely designed, architected, implemented, and managed. This role is perfect for professionals who seek opportunities to act as proactive consultants, offer inventive solutions, lead high-performing teams, and help address a wide range of multifaceted and compelling issues. We are unable to sponsor or transfer visas at this time.

Responsibilities:

  • Lead the identification, assessment, mitigation, monitoring, governance, and reporting of software vulnerability throughout IT
  • Develop and present security assessment reports to leaders – highlighting findings, trends, and level of exposure. This may also include presentations to the Information Security Steering Committee & Divisional staff meetings
  • Work with all IT sub-divisions to recommend and develop new security solutions, and/or modify existing workflows and SDLC processes
  • Evaluate software’s ability to meet defined control objectives, determine remediation requirements, and identify impacts to IT and business unit operations. Since we employ a wide array of systems, you’ll also prioritize software analysis
  • Cultivate effective working relationships with key partners, such as other Security teams, Legal, Fraud, Compliance, Contingency, and Audit as well as lead cross functional teams
  • Act as a key stakeholder across various Security Governance teams
  • Partner with prominent security consulting firms, in addition to directing and managing a significant security consulting budget.
  • Manage the training and upskilling of our Security crew. This will include making appropriate updates to policies/procedures related to Software Assurance and guiding developers in preventing future or reoccurring errors
  • Develop your team by providing guidance, personalized coaching, and constructive feedback. Fostering a warm, collaborative, and challenging work environment will enable a culture of engagement and trust. Striking a balance between operational and control needs will further drive effective partnerships

Qualifications:

  • Minimum of eight to ten years' broad senior technical, operations, or applications experience. Financial services industry experience, preferred
  • 3+ years of experience with Application Security & Application Penetration Testing
  • Previous experience as a People Manager required
  • Strong understanding of the variety of application development architectures, platforms, methodologies, and supporting operations
  • Familiarity or experience with integrating application security assuming technologies into CI/CD pipeline
  • Familiarity with tools such as Veracode, Sona Type, and Fortify, SCA
  • An undergraduate degree in IT or related discipline, or an equivalent combination of education and experience
  • Industry certifications (CISSP, GSEC, GPEN, GWAPT, GWEB, etc.) preferable
  • Comprehensive understanding of the major underlying technologies used by developers to deliver technology solutions
  • Previous hands on experience as a technical lead and architect, focus on security preferred
  • Excellent leadership, interpersonal, verbal and written communication, presentation, and problem solving skills
  • Excellent knowledge of risk analysis, application and system software (including security software and hardware), related capabilities, and performance characteristics
  • Technical knowledge of IT processes to include configuration management, networking, database management, application coding, availability, data center operations, etc.
  • Excellent understanding of technical security safeguards
  • Strong IT experience related to software development and/or technical operations
  • Solid business acumen, flexibility, and judgment to evaluate issues/problems of high complexity and make sound decisions
  • Strong influencing skills to include negotiation, problem solving, and conflict resolution
  • Strong project management and people management skills
  • Solid analytical skills and understanding of processes, technology and operational concepts
  • Ability to interact effectively at all levels of personnel

About Signature Consultants, LLC

Headquartered in Fort Lauderdale, Florida, Signature Consultants was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. For the eighth consecutive year, Signature was voted as one of the “Best Staffing Firms to Work For” and is now the 14th largest IT staffing firm in the United States (source: Staffing Industry Analysts). With 26 locations throughout North America, Signature annually deploys thousands of consultants to support, run, and manage their clients’ technology needs. Signature offers IT staffing, consulting, managed solutions, and direct placement services. For more information on the company, please visit www.sigconsult.com.