Taurean Consulting has a job for you


Job Details

Data Security and Compliance

Director of Data Security and Compliance  ,   Posted: 8/7/2020
Job Description

Job ID#:


Job Category:

Data Security and Compliance

Position Type:

Contract To Hire

We are looking for a leader previous experience leading a Data Security and Compliance team of a large enterprise. The Data Security and Compliance Director will be an integral member of the leadership team driving the security team which has overall information security responsibility for the enterprise. This position can be described as a very broad-based position and will provide the candidate exposure to many facets of Information Security across product, operations, engineering, IT and compliance. This position requires hands-on experience in security engineering, architecture, administration of security technologies and experience with data analysis and risk management. 
  • Must possess a good understanding of IT technology to include hardware and software with a focus on security and auditing processes and procedures
  • Manages a security program including policies & procedures and security awareness
  • Participates in design reviews for software and hardware projects with a focus on detecting security design flaws and adherence to security best practices.
  • Ensures compliance with Gramm-Leach-Bliley Act (GLBA), FFIEC, PCI Standards and other regulatory requirements
  • Develops, maintains and enforces a Data Security Review to be used for all new and existing critical vendors
  • Performs Data Security Awareness training for all new employees and annually for all bank employees
  • Works with department heads to ensure security monitoring and best practices are being enforced
  • Designs and participates in security related incident responses.
  • Oversees annual review and revision of the risk management process
  • Knowledge of the global IT Risk Regulatory Landscape
  • Knowledge of project and program management concepts and controls
  • Stay abreast of new regulatory requirements and communicate to upper management
  • Must have experience working with federal examiners (e.g. FFIEC, OCC, SOX, FDIC, etc.)
  • Good working knowledge of requirements for GLBA, SOX and PCI
  • Manage audit process
  • Manage and track recommendations and remediation efforts

Job Requirements


Job Requirements
  • Must have 5 + years of experience in physical and logical security oversight
  • Experience with auditing processes, Including network Security, SDLC/Change Management and IT related functions
  • Experience in developing and maintaining a technology risk assessment process
  • Must have strong communication skills and ability to work individually, within a team and with other business groups
  • Experience or understanding of Disaster Recovery and Business Continuity initiatives
  • Must have ability to develop policies & procedures and communicate effectively in a one on one as well as a group environment
  • Understanding of federal and other regulatory requirements and the ability to keep current
  • Must be well versed in industry accepted IT control frameworks (e.g. SSAE16, SAS70 or ISO17799 audit reports)


Already have an account? Log in here