Desired Skills and Experience
·Good experience in technology, risk or security related roles, with demonstrable experience of identifying and managing information security risks
·Strong understanding of web application development and service oriented architecture, and related technologies and platforms
·Understanding of enterprise IT infrastructure and architectures
·Demonstrable understanding of information security protection and methodologies
·Experience of assisting non-technical users with identification of information threats/vulnerabilities/risks
·Knowledge of a wide range of information security related topics and industry standards, including ISO27001 and ITIL.
·Ability to review complex information systems and web applications, identify risks and recommend appropriate, pragmatic (and cost effective) solutions to mitigate those risks.
·Highly effective and creative problem-solving skills
·Ability to convey and explain complex technical information to non-technical staff
·Ability to communicate and collaborate at all levels of the corporation, and externally
Additional Desirables for Role
·Web application development and architectural experience
·Unix / linux security and/or administration experience, especially Red Hat/CentOS
·Windows / active directory security and/or administration experience
·VMWare / VBlock security and/or administration experience
·Cloud solutions - such as AWS, Rackspace, Azure knowledge, etcetera.
Experience of ensuring security in agile/iterative development.