Job Details: Information Protection Manager
| Job Title: | Information Protection Manager |
| Job ID: | 57103 |
| Company: | CIGNA |
| Position Type: | Permanent |
| Pay Rate: | base + bonus |
| Skills: | CISCO firewalls, CISSP |
| Date Posted: | Jun-16-08 |
Responsible for all aspects of information systems security for a business segment or function to ensure the protection of information processed, stored or transmitted. Evaluates security products and tools for enterprise implementation and develops technical security configurations. Approves IP security architecture/designs, plans, controls, processes, standards, policies and procedures to ensure alignment with IP standards and overall IP security strategy. Directs the development of techniques and procedures for conducting IP security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
Develop, maintain, and communicate information protection security policy, standards, and procedures, including mandatory requirements, to support consistent and effective implementation of information protection for specific area(s) of expertise (i.e. distributed, mainframe etc.) across Business Units and IT.
Review and recommend security safeguards and configurations in a highly complex system infrastructure with demonstrated ability to recognize and appropriately incorporate layered security safeguards from the network perimeter, network, application, and data layers.
Define security requirements and coordinate application of IT security products to provide reliable and cost-effective information protection solutions to meet defined business requirements for specific area(s) of expertise (i.e. distributed, mainframe etc.) across Business Units and IT.
Research and provide technical expertise and assessment of new security products for specific area(s) of expertise.
Work on project teams; lead the evaluation of emerging technologies and the associated security implications, potential infrastructure impact and solutions. Provide security engineering and standards and security subject matter expertise established by IT to ensure security standards, procedures and products, and technical engineering safeguards remain current and applicable.
Participate in the development and regular updating of procedures and requirements for security incident response based on technology risks and business requirements. Participate in the development of SIRT testing methodology and participate in periodic incident response tests.
Conduct analysis of business and technical requirements for security systems and select products for area(s) of expertise to become part of CIGNA's standards.
Strong understanding of IT security, specifically best practices and products.
Proficient knowledge of security technology safeguards, technologies, and operating systems security configuration management.
Knowledge of technical architecture development and application development methodologies from a security perspective.
Proficient technical security systems security knowledge of all technical security safeguards use in a complex system infrastructure including: firewall technologies (CISCO/Checkpoint), encryption based security safeguards and standards (3DES, AES, Public keys etc.), access control facilities (ACF2, TIM/TAM/FIM), major operating system security configurations (Z/OS, AS/400, Solaris, Windows etc.), smart cards, data and network encryption technologies and products.
Knowledge of e-commerce security, peer to peer security, trust security architecture, technologies and standards.
Strong security technical expertise in one or more of distributed, mainframe, and midrange host environments.
Strong network security understanding in a multi-protocol LAN/WAN environment.
Strong understanding of host and network intrusion detection and monitoring methodologies.
Proficient or expert at security controls or previous technology controls assessment experience such as IT Audit.
Demonstrated understanding of industry information protection issues and practices.
Strong analytical skills and ability to creatively challenge current methods and procedures.
CISSP or similar certification required.
Big 5 security consulting experience or equivalent work experience preferred.
CIGNA is an Equal Opportunity Employer.
| Location: [rss] | US-CT-Bloomfield |
| Telecommute: | No (Onsite Position) |
| Contact Name: | Mike Mueller |
| Contact Phone: | |
| Contact Email: | michael.mueller@cigna.com |
| URL: | http://careers.cigna.com |
Principals only. Recruiters, please do not contact this job poster.
View other jobs in US-CT-Bloomfield »
View other jobs in US-CT »
View other Information Protection Manager jobs, Network Engineer jobs, Systems Security jobs, Tech jobs
View other jobs requiring these skills: CISCO firewalls,
CISSP
View other postings by CIGNA »
