Security Manager of Audit Services and Compliance
Deluxe Entertainment
Burbank, CAThis was removed by the employer on 5/7/2015 11:35:00 AM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Search for Security Manager of Audit Services and Compliance jobs in Burbank-CA
Search all Security Manager of Audit Services and Compliance postings
Full Time Job
We currently have an opening for a Security Manager of Audit Services and Compliance. This position will be located in Burbank, CA.
SUMMARY:
The Security Manager of Audit Services and Compliance will direct the organizations' preparation, approach and engagement in the outside audit process and the development and implementation of policies, procedures and controls to ensure that the organizations' security practices are consistent with compliance standards.
RESPONSIBILITIES:
• Develop and implement a comprehensive strategy on the audit process and security policies, procedures, and best practices.
• Determine, implement and maintain a comprehensive accounting of all audit compliance requirements and maintain a schedule of all audits globally.
• Facilitate the creation, modification and implementation of all technology and physical security compliance policies.
• Identify all compliance standards related to data storage, production, and post-production. (e.g. SOC, MPAA, CDSA and ISO 27001/27002)
• Evaluate and determine standards applicable to achieve compliance.
• Work closely with IT Security and Audit Services department to achieve compliance and comprehensive integration of security solutions into the business process.
• Create project plans to implement changes to correct findings and or implement best practices to various facilities.
• Provide reports on existing business processes and assist in the development and optimization of new and existing tools and techniques to enhance capabilities.
• Conduct planned, requested, and unannounced testing for Deluxe business units worldwide to identify security gaps and areas for improvement.
• Identify the associated IT and physical security compliance control gaps.
• Oversee the documentation, implementation and testing of the entire compliance control portfolio.
• Develop and direct IT and physical compliance control programs to ensure security is managed to the appropriate level of acceptable residual risk.
• Develop and deploy security policies and architecture; oversee implementation.
• Report the levels of IT and physical security compliance risk and related control effectiveness to key stakeholders such as IT business unit management, senior management and internal/external auditors.
• Achieve security operational objectives by directing strategic plans and reviews; preparing and completing action plans; implementing production, productivity, quality, and customer-service standards; resolving problems; identifying trends; determining system improvements; implementing change.
• Work closely with IT teams to ensure a comprehensive Disaster Recovery Plan and Business Continuity Plan is implemented and tested.
• Work closely with the technology teams of network, systems, operations, and development to ensure management of risk is inclusive to processes contemplated and planned.
• Develop, recommend, implement and enforce strategic enhancements to minimize risk in existing processes.
• Prepare and deliver presentations to both technical and non-technical audiences.
• Assist in the creation and maintenance of a worldwide Security Council portal and associated newsletter.
• Manage multiple projects simultaneously.
• Serve as Project Manager when assigned, including but not limited to:
o Serve as ''accountable owner'' of project, bringing it in on-time and on-budget, escalating issues for resolution and following established PMO procedures.
o Develop and maintain project plans.
o Monitor project implementation on a day to day basis.
o Work with managers and others to identify and schedule needed resources.
o Produce periodic project reports for management, commensurate with complexity of the project.
o Keep Project stakeholders informed, developing a keen sense of the level of detail needed for the specific project and stakeholders.
o Develop, disseminate, and implement a project communication plan which ensures all appropriate individuals are kept up to date on progress, issues, etc.
o Oversee development of all deliverables, and serve as final QC prior to presentation to completion.
o Secure and document approvals as needed throughout the project's lifecycle.
o Prepare, finalize, and implement all needed training, documentation, and Operations transition material.
QUALIFICATION/REQUIREMENTS:
• Degree in Computer Science/Business or related field and/or demonstrated capability through previous experience and education to perform the job.
• Minimum of 5 years of Information Security experience with at least 2-3 years of Risk and/or Compliance experience.
• Experience within the post-production industry preferred.
• Strong computer skills a must.
• Proven experience developing and submitting IT audit and compliance reports to governing bodies, legal entities and/or external authorities.
• Experience in planning, organizing and developing information technology policies, procedures and practices.
• Demonstrated ability to apply IT related knowledge and experience in solving compliance issues.
• Up to 50% global travel required.
• Solid understanding of project management principles.
• Advanced analytical and reasoning skills required.
• Must be able to multi-task and manage time and resources efficiently and effectively.
• Must be comfortable working in an extremely fast-paced environment and maintain sensitivity to personnel and corporate concerns.
• Excellent verbal and written communication skills with the ability to communicate with all levels of the organization are required.
• Ability to maintain confidential information.
We offer competitive pay and benefits program, including: medical, dental & vision coverage, vacation & sick leave, 401(k), and more.
Deluxe Entertainment Services Group Inc. is an Equal Opportunity Employer.