Info Security Program Manager
American Modern Insurance Group
Munich Re Group
The primary purpose of this position is to provide program management across the Engineering and Operational activities for the Americas IT Security organization. This includes providing project management, coordination and project risk analysis to further the maturity of the regional security organization. Additionally, to manage the processes to enforce delivery of IT security standards and best practices to protect and maintain the integrity of the Companys information assets.
Drive the service roadmap and strategy of the Americas IT Security Team through alignment with the Munich Re Global Standards.
Manage daily interactions with the Operations and Engineering teams as it relates to project initiatives and process improvements to further the maturity of the Americas IT Security Team.
Manages regional and local security portfolio. (including self-assessment audits).
Clarify and confirm roles and responsibilities on projects, and drive accountability and transparency in execution.
Establish yearly security portfolio plans, communication plans and report regularly on status and progress to key stakeholders and management.
Formulate work standards, develop schedules, reviewing work discrepancies, and communicating policies organization-wide as needed while working with the Security Engineering and Operations Managers.
Coordinates regular team meetings pertaining to the yearly portfolio plan and schedules.
Completes and obtains sign-off on all project deliverables and ensures they are maintained in the proper project repository.
Works with core IT functions (e.g. architecture, engineering, infrastructure) and manager of those disciplines to ensure proper completion of planned projects and initiatives.
Collects, analyzes, and submits information about potential and existing information security risks and threats on an ongoing basis and provides this information to management.
Coordinates activity for the Americas region for IMS and investigates possible security exceptions, updates, maintains and documents security controls.
Interfaces with external and internal auditors for audit issues and action plans related to Information Security and related internal systems controls.
Performs other duties as assigned by the IT Americas Security Manager.
7-10 years of combined IT and security work experience with a broad range of exposure to systems analysis and applications development.
Requires knowledge of security issues, techniques and implications across all existing computer platforms.
Possesses strong project management skills.
5 -7 years experience with collaboration of teams and projects for information technology and security.
Works directly with a variety of managers to create broad acceptance for proposed innovations and changes.
Continuously looking for ways to improve security procedures and develop new approaches to address security concerns or issues.
Understands the implications of actions on other areas, people, and processes when making a decision.
Sets priorities with an appropriate sense of urgency; applying energy and resources to achieve result and add value.
One or more, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) or Project Management Professional (PMP) designation desired.
Communicates clearly and concisely verbally and in writing using appropriate language and examples
Location: Princeton, NJ
Contact: Cheryl Jones