Information Security Metrics & Automation Specialist
Essential Functions/Responsibilities:
Looking for Professionals with overall 6 to 8 years of overall experience with minimum 3 years of experience working with data reporting, metrics, and analytics.
The Information Security Metrics & Automation Specialist role supports and enables leaders with information to help the organization operate efficiently while measuring risk and performance. The Metrics & Automation Specialist will support the Information Security metrics reporting program as well as provide specialized support with efforts focused on improving/automating operational performance.
Essential Responsibilities :
- Leading efforts to build a robust, sustainable Risk and Security Metrics and Reporting Program including identification of key measurement criteria, analysis of source data, definition of processes to produce metrics, analysis of trends and identification of key drivers
- Determine requirements, design, build, test, implement, maintain and enhance security reporting systems.
- Driving the metrics program to higher levels of maturity with a particular focus on automation of data collection and dashboard creation
- Develop a dashboard and metrics roadmap and scorecard
- Monitor and collect data on security metrics.
- Reconcile and troubleshoot data issues
- Automate reporting and management metrics presentations
- Partnering with risk and security subject matter experts to understand data and then define metrics and reports for information security functions such vulnerability management, endpoint protection, content filtering and threat monitoring; work with team members to create repeatable data collection processes to ensure metrics and reports have a consistent data quality.
- Defining and delivering consistent reporting for risk and security projects and controls
- Maintain a catalog of security data, reports and dashboards that can be tailored for audience (technical / business, executive / operational) and frequency in order to support scheduled and ad-hoc requests
The Candidate :
- Should be a self-starter / motivator
- Should have the ability to prioritize and multitask. Flexibility and adaptability in work approach.
- Should be good in communication and is comfortable with working will cross functional teams
- Should have the ability to maintain confidentially.
- Should accept responsibility and personal accountability.
- Should be able to work with Virtual / Cross functional teams
- Should have the maturity to understand the business criticality and ability to identify & highlight risk/ gaps.
- Should have IT functional area exposure (Network, Servers, Endpoints, Information Security, Security operations etc.)
Qualifications/ Requirements :
- Graduation in any discipline
- 6 to 8 years of overall experience with minimum 3 years of experience working with data reporting, metrics, and analytics.
- Ability to analyze data and metrics provided by Business/Regional units to identify risk, performance and quality issues and significant variances and trends.
- Demonstrate advance experience on the following areas: Security and/or IT Risk metrics; Data integrity;
- Technical proficiency in MS Word, Excel, PowerPoint, MS Access and Business Objects
- Person should have one or more industry recognized certifications as mentioned below;
- Security+
- ISO27001LA/LI
- CISA / CISM
- CISSP
Working knowledge of some of the industry standards, i.e. HIPAA, PCI, SANS Top 20 CSC, NIST Cybersecurity Framework etc. would be an added advantage.
Didn’t find the job appropriate? Report this Job