Information Security Officer
BB&T Human Systems - Raleigh, NC

This job posting is no longer available on BB&T Human Systems. Find similar jobs: Information Security Officer jobs - BB&T Human Systems jobs

Line of Business: OPS - IT Services Group
Job Category: Executive/Senior Level Officials and Managers


Minimum Qualifications:
1. Bachelor?s degree in computer science, business, or related discipline, or equivalent education and related training
2. Certification in information security fundamentals (GISF or higher)
3. Seven years experience in IT, of which at least three years was in the information security field in a leadership/supervisory position
4. Demonstrated SME level knowledge in one of the following areas: Firewall Administration, Intrusion Detection, Communications, Incident Response, RACF, Encryption, Access Control, Threat Management, or any other security-related field.
5. Familiarity with multi-platform environments and their operational/security risk considerations
6. Strong oral and written communications skills; strong presentation and marketing skills
7. Highly adaptable to a constantly changing business and technology environment
8. 30%/70%business/technology acumen

1. Privacy/Protection: Provide the necessary subject matter expertise and ensure the implementation of the information security architecture, risk management standards, best practices and systems/processes to ensure information privacy/protection.
2. Risk Management: Interact with management to determine acceptable levels of risks as the business model and risk profile changes and align the security program accordingly.
3. Monitoring of security procedures and practices: Review on a timely basis the various analyses of the reports and logs available. Review the recommendations for noted irregularities.
4. Security policies for the bank: Be aware of and review the security features of new information security practices, systems and business services to ensure that they meet the security requirements of the existing policies. Review and propose changes to existing policy as external emerging issues and conditions warrant.
5. Ensure adequate security for new business services and systems: Assist in the development of scenarios of usage, test for abnormalities or exposures. Prepare documentation to augment vendor materials that include local enhancements and implementations.
6. Regulatory/Legal/Corporate Compliance: Stay abreast of all information security related laws and regulations to ensure compliance to them. Ensure compliance to corporate policies.
7. Support or direct enterprise level information security related functions such as: Firewall Administration, Intrusion Detection, Communications, Incident Response, RACF, Encryption, Access Control, Threat Management, Cyber Forensics, and other security related functions as required. . Make recommendations for improvements to the program, respond to alleged policy violations and act as participant in event of a breach. Ensure communications to the CISO, and other senior level officers, are accurate and timely.
8. Make recommendations for assigned personnel regarding employment, career development, performance evaluations, salary changes, promotions, transfers and terminations within established policies and guidelines.
9. Plans and develop departmental budgets in accordance with established guidelines; administer compliance to meet budgetary goals and negotiates changes as required.
10. Maintain awareness of changes in industry: Attend classes and seminars as required to maintain a high level of proficiency in the fields of information security and business resumption. Network with other information security professionals. Read about and be aware of the trends regarding BRP and Security in the industry.


About this company
692 reviews
BB&T Corporation (BB&T) is a financial holding company. The Company conducts its business operations primarily through its...