2-6 years experience required. BS/BA degree with three (3) or more years of relevant experience in related field or any combination or equivalent
Ideal candidate will possess all of the above plus airline industry experience, broad range of exposure to business planning, systems analysis, and/or application development.
Experience in data administration and security methods, plus experience in various database design techniques; familiarity with multi-platform environments, and IT auditing.
Responsibilities:
Responsible for analyzing the information security environment and assisting with the development of security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure.
Work with management, development personnel, risk staff, auditors, facilities, and security department personnel to identify and implement security plans to ensure that all information assets are appropriately safeguarded, including the following:, software applications, hardware, telecommunications, and computer installations.
Determine methods of implementing and enforcing security policies.
Responsible for maintaining a high level of user trust and confidence in the groups knowledge of and concern for security of systems, while working on multiple network security projects.
Lead development of information security technology tasks and projects.
Ability to communicate with all levels of management.
Generate, coordinate, and maintain of project plans.
Develops cost analysis estimates for information security tasks and projects.
Keep project plans updated as required.
Interact with customers as required by project objectives.
Understanding of business process as it relates to information security.
Define, redesign, and document security processes and procedures.
Coordinate the development and delivery of awareness for information security.
Work with resource owners to determine appropriate security policies for securable resources.
Consult with IT staff to evaluate, select, install, and configure hardware and software systems that provide appropriate security functions.
Assist resource owners in understanding and responding to security failures/problems.
Assist in determining cause of security related events and identify potential security related events.
Communicate to appropriate personnel on normal and exception processing of security authorization requests and/or breaches.
Assist with documentation of security policies; maintain resource classification, may be required to present on security status, project status, and security training to management and IT personnel as needed.
Assist in proactively protecting the integrity, confidentiality, and availability of information in the custody of or processed by the company.
Consult with business units to ensure selection and use of realistic enforcement mechanisms.
Aid in review of security policies and auditing of logs.
Assist in developing and maintaining effective disaster recovery plans, processes, and procedures.
Assist inResearch, evaluate, design, test, recommend, and plan implementation of new or improved information security research, evaluate, design, test, recommend, and plan implementation of new or improved information security technology.
Train information owners in the implementation of necessary computer security controls. *May perform other duties as assigned.