View Our Website View All Jobs

Director of Information Security

Generali Global Assistance seeks an Information Security professional with experience developing and supporting information security initiatives in a regulated industry (insurance preferred) and hands on experience in attaining ISO 27001 in an organization. 

  • Recommend and implement changes in security policies and practices in accordance with changes in local or federal and international law and regulations when applicable, like HIPAA, PCI-DSS, GDPR
  • Participate as a member of the senior management team in governance processes of the organization’s security strategy, and align with Group Security Strategy.
  • Interface with potential customers to present our information security environment
  • Lead strategic security planning to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies using a risk-based assessment methodology.
  • Assist with the design and implementation of disaster recovery, business continuity plans and crisis management, procedures, audits, and enhancements.
  • Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
  • Drive regular Security Audits, and support Group security audits, and help define remediation plans, and then supervise its execution.
  • Act as advocate and primary liaison for the company’s security vision via regular written, in-person communications, training and awareness with the company’s executives, department heads, and end users, for all USA Business lines.
  • Work closely with IT and other departments on corporate technology development, network security, facility access and security systems and software.
  • Develop, track, and control the security services annual operating and capital budgets for purchasing, staffing, and operations.
  • Recommend and implement changes in security policies and practices in accordance with changes in local or federal and international law and regulations when applicable, like HIPAA, PCI-DSS, GDPR, PIPEDA
  • 5-7 years managing an IT/information Security operations in a regulated industry (insurance, finance, healthcare, etc.) 
  • Prior experience bring an organization to  ISO 27001

Education Requirements

4 year degree in the field of computer science or business administration required, advanced specialization in information security desirable

Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file