Senior Business Information Security Officer
Remote Office, Georgia, USA
Applications have closed
Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.
Summary of This Role
Provides technical guidance on information security policies, procedures, technologies and compliance-related activities as a technical advisor and partner to assigned business units. Works with key stakeholders at multiple levels in order to identify and align business and Information Security objectives, discover pain points, provide recommendations, and recognize current and future security needs. Investigates and resolves security incidents and recommends enhancements to improve security. Provides advice and oversight to ensure that Information Security policy is in compliance with processes and systems used by the assigned business unit.
What Part Will You Play?
Collaborates with senior executive leadership to build mutually beneficial relationships, understand company \ business segment \ department strategy. Aligns segment business unit and Information Security (IS) goals and objectives, facilitating understanding, planning, and communication between IS operations and the business unit. Demonstrates broad knowledge and understanding of information security and business needs by identifying and engaging appropriate IS support teams to mitigate risk.
Mitigates risk associated with third party vendors and internal application / processes. Leads internal security and high level (internal category one / two) vendor security reviews; initial and periodic information security reviews, technical assessments, contract reviews with IS clauses, and participates in associated quarterly business reviews. Provides oversight and reports on risk management program to leadership for remediation of findings and evaluates solutions to reduce residual risk.
Gains credibility by providing expert solutions to trends and topics that influence information security in the payments industry. Identifies new and emerging threats that affect information assets, collaborates with Architecture & Engineering teams on third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from a risk perspective, and provides appropriate direction. Develops education & awareness programs tailored for business segments. Promotes the corporate security policy and procedures in alignment with senior leadership.
Leads information security incident response, investigation, resolution and closure of incident response processes. Consults on incident handling process which includes implementation of containment, protection and remediation activities. Collaborates with Threat Management Center on responses to known and emerging threats against the network. Partners in the after action reviews of security incidents for process improvement. Provides support for forensic and incident security investigations in accordance with the incident response plan. Facilitates client communications relating to incidents and updates senior management on incident status.
Reviews business requests to determine level of risk acceptance to mitigate impact. Informs management of security policy variances.
Not an exhaustive list; other duties as assigned.
What Are We Looking For in This Role?
Minimum Qualifications
Bachelor's Degree - Computer Science, Information Security, or related work experience.
Typically Minimum 10+ Years Relevant Exp - Knowledge of industry standard security compliance programs PCI (Payment Card Industry), FFIEC (Federal Financial Institutions Examination Council), SOX(Sarbanes-Oxley), GLBA(Gramm Leach Bliley Act), and HIPAA (Health Insurance Portability and Accountability Act).
Required Certification(s) / Licensing: Professional certifications CISSP (Certified Information System Security Professional), CISM (Certified Information Security Manager), CISA (Certified-Information-Systems-Auditor), GSEC (GIAC Security Essentials), Network +, Security +
What Are Our Desired Skills and Capabilities?
Skills / Knowledge - Having broad yet in-depth expertise and unique knowledge, uses skills to set and ensure success of company objectives and principles and to achieve goals in creative and effective ways within environments and situations that are complex and difficult. Having ownership of a function, major account or matrix management responsibilities, uses knowledge to ensure success, strengthen relationships, expand the business through key initiatives, and lead matrix teams on complex projects. Barriers to entry such as technical committee and senior management review exist at this level.
Job Complexity - Works on issue that impact design/selling success or address future concepts, products, or technologies. Creates formal networks with key decision makers and serves as external spokesperson for the organization with key accounts, agencies, partners, vendors, and sales prospects.
Supervision - Exercises wide latitude in determining objectives and approaches to critical assignments.
Benefits
Global Payments offers a comprehensive benefits package to all of our team members, including medical, dental and vision care, EAP programs, paid time off, recognition programs, retirement and investment options, charitable gift matching programs, and worldwide days of service. To learn more, review our Benefits page at: https://jobs.globalpayments.com/en/why-global-payments/benefits/
This position is eligible to be considered for remote hiring anywhere in the USA. #LI-Remote
Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website, please contact jobs@globalpay.com.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: BISO CISA CISM CISSP Compliance Computer Science FFIEC GIAC GLBA GSEC HIPAA Incident response Risk management SOX Strategy
Perks/benefits: Health care Insurance
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.