Information Security Officer

An extraordinarily talented group of individuals work together every day to drive TNS' success, from both professional and personal perspectives.  Come join the excellence!

Overview

Develop and administer system and information ownership; information and data classification guidelines; standards and procedures. Develop, establish and maintain security policies, standards, procedures and guidelines to promote the security and uninterrupted operation of applications, systems and network devices. Identify and address exposures to accidental or intentional destruction, disclosure, modification, or interruption of information that may cause serious financial and/or information loss to TNS. Be responsible for the protection of TNS assets and information which are processed by or stored in TNS information systems.

Responsibilities

SUMMARY OF ROLE
•    Assist with Physical and Logical Security tasks
•    Assist with external and internal IT pre-audits and audits
•    Develop Security Awareness content
•    Manage and maintain the updates of Security Documents
•    Assist with completing Security Risk questionnaires
•    Conduct Security Risk Assessments for various products and services
JOB DIMENSIONS
•    Number of staff managed: Nil
•    Budget controlled (specify what is included here): N/A    
•    Other dimensions helpful to understand size/scope of job: N/A

PRINCIPAL RESPONSIBILITIES
•    Establish and maintain information security standards and procedures in compliance with information security and risk management policies, standards and guidelines.
•    Assisting with the design and implementation of the ISO27001 Information Security Management System across all TNS sites globally.
•    Function as an internal consulting resource on information security issues.
•    Conduct information security risk assessments in various environments. Review compliance with the information security policy and associated procedures.
•    Manage physical and logical security and escalating security issues to the Director of Information Security
•    Monitoring and analyzing security alerts and distributing relevant information to appropriate information security and business management staff.
•    Manage security incident management process from detection to remediation.
•    Assist with management and implementation of PCI and ISO27001 requirements.
•    Coordinate security orientation and security awareness programs.
•    Assist with preparation for external and customer IT audits.
•    Understand and keep up-to-date with the latest security issues and keeping the Director of Information Security and other team members informed.
•    Assess and manage security risks of 3rd parties as part of our vendor management program.

ADDITIONAL RESPONSIBILITIES
•    Maintaining confidentiality as the Security team may be privy to sensitive company and customer information
•    Working closely with the Director of Information Security and other team members on various projects in the Global Security department
•    Assist with the architecture, design and review of products and services
•    Assist with managing security technologies primarily managed from the United States

PERSON SPECIFICATION
KNOWLEDGE
Working knowledge of:
•    Networks and processing businesses
•    Risk management practices/standards
•    ISO27000 series standards
•    PCI DSS
•    Identity and Access Management
•    General security best practices
EXPERIENCE
•    5 or more years in Information Security
•    Security program oversight and implementation
•    ISO27001 implementation
•    IT audits
•    In a networks or processing business
QUALIFICATIONS
•    Bachelor’s degree or better
•    Suitable recognized training in security and audit
•    CISSP, CISM and/or CISA preferred

Qualifications

If you are passionate about technology, love personal growth and opportunity, come see what TNS is all about!

TNS is an equal opportunity employer. TNS evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.