MatchMove - Manager/Senior Manager - Information Security

Are You The One?

MatchMove Pay, one of the fastest, award-winning Financial Technology company, is looking for a Manager / Senior Manager, Information Security to establish and manage information security across MatchMove.

Key Responsibilities:

- Establish and manage Information Security Plans and Policies: Plan and carry out an organization's information security strategy. Develop a set of security standards and best practices for MatchMove, and ensure security enhancements are executed as required. Develop strategies to respond to and recover from a security breach. Educating staff on information security through training and building awareness.

- Implement Protections: Ensure operations of firewalls and data encryption programs, to protect MatchMove's sensitive information. Assist computer users with installation security products and procedures.

- Test for Vulnerabilities: Ensure periodic scans of networks to find any vulnerability; and penetration testing - simulate an attack on the system to highlight or find any weaknesses that might be exploited by a malicious party.

- Monitor for Security Breaches: Monitor MatchMove's networks and systems for security breaches or intrusions. Install software (with support from Infra team) that helps to notify intrusions, and watch out for irregular system behavior.

- Investigate Security Breaches: If a breach has occurred, leads incident response activities to minimize the impact. Afterwards, lead a technical and forensic investigation into how the breach happened and the extent of the damage. Prepare reports of their findings to be reported to management.

Requirements :

- Experience with anti-virus software, intrusion detection, firewalls and content filtering

- Knowledge of risk assessment tools, technologies and methods

- Experience designing secure networks, systems and application architectures

- Knowledge of disaster recovery, computer forensic tools, technologies and methods

- Experience planning, researching and developing security policies, standards and procedures

- Professional experience in a system administration role supporting multiple platforms and applications

- Ability to communicate network security issues to peers and management

- Ability to read and use the results of mobile code, malicious code, and anti-virus software

- Keen eye for detail, think one step ahead of criminals. Well organized and thrive in fast-paced, high-stress scenarios.

- Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention

- Certifications in one or more of the following: PCIDSS, ISO 27001, DRP, CEH, CISA, CISSP.

- Ability to obtain a Security Clearance, if needed.

- Proven work experience in one or more of: security consulting, audit, VA/PT, code review, managed security services.

- Detailed technical knowledge of techniques for authentication and authorization, applied cryptography, security vulnerabilities and remediation

- Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols

- Interest in all aspects of security research and development

- BS degree in Computer Science or related field