INFORMATION SECURITY OFFICER

- Knowledge of system management disciplines such as security architecture, disaster recovery, and help desk operations. Knowledge of networking design architecture.
- Knowledge of current, security issues, and technological developments/trends. Knowledge of the nature and sources of security threats and methodologies/technical requirements for devising solutions.
- Knowledge of industry standards for IT security and operating procedures. Proven ability to develop policy and procedure documentation.
- Ability to install, troubleshoot and maintain security monitoring software and software enhancements.
- Ability to identify and respond to system intrusions and security breaches.
- Effective communication and interpersonal skills - sufficient to deal effectively and diplomatically with a wide variety of people, effectively elicit IT information from users, train users in technical procedures/design, negotiate at all levels, present effectively to a wide range of audiences, maintain confidentiality, and document IT related procedures.
- Strong customer service skills, with the ability to work within unit and security policies and guidelines.
- Comfortable with and able to adapt to rapidly changing priorities and manage multiple assignments.
- Self-motivated and able to work without close supervision including the ability to manage time appropriately.
- Ability to work under pressure; meet inflexible deadlines; Strong leadership, project and team-building skills, including the ability to lead teams and drive initiatives in multiple departments

Technical Skills
- Windows, UNIX and Linux operating systems
- VB.NET, Java/J2EE, ColdFusion, API/web services, scripting languages and a relational database management system (RDBMS) such as MS - SQL Server or Oracle
- Thorough understanding of relevant industry security standards and protocols including ISO27001 and NIST; Control Objectives for Information and Related Technologies (COBIT); Committee of Sponsoring Organizations (COSO)
- The ISO 27001 specifications for an information security management system
- Router, switch and VLAN security; wireless security
- Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and security attack pathologies
- Knowledge of cGMP/FDA compliance requirements as necessary- Knowledge of system management disciplines such as security architecture, disaster recovery, and help desk operations. Knowledge of networking design architecture.

- Knowledge of current, security issues, and technological developments/trends. Knowledge of the nature and sources of security threats and methodologies/technical requirements for devising solutions.

- Knowledge of industry standards for IT security and operating procedures. Proven ability to develop policy and procedure documentation.

- Ability to install, troubleshoot and maintain security monitoring software and software enhancements.

- Ability to identify and respond to system intrusions and security breaches.

- Effective communication and interpersonal skills - sufficient to deal effectively and diplomatically with a wide variety of people, effectively elicit IT information from users, train users in technical procedures/design, negotiate at all levels, present effectively to a wide range of audiences, maintain confidentiality, and document IT related procedures.

- Strong customer service skills, with the ability to work within unit and security policies and guidelines.

- Comfortable with and able to adapt to rapidly changing priorities and manage multiple assignments.

- Self-motivated and able to work without close supervision including the ability to manage time appropriately.

- Ability to work under pressure; meet inflexible deadlines; Strong leadership, project and team-building skills, including the ability to lead teams and drive initiatives in multiple departments

Technical Skills

- Windows, UNIX and Linux operating systems

- VB.NET, Java/J2EE, ColdFusion, API/web services, scripting languages and a relational database management system (RDBMS) such as MS - SQL Server or Oracle

- Thorough understanding of relevant industry security standards and protocols including ISO27001 and NIST; Control Objectives for Information and Related Technologies (COBIT); Committee of Sponsoring Organizations (COSO)

- The ISO 27001 specifications for an information security management system

- Router, switch and VLAN security; wireless security

- Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and security attack pathologies

- Knowledge of cGMP/FDA compliance requirements as necessary