Job Detail

1 IT Security Architect

a Create solutions to close security gaps, and provide internal consulting services to Panasonic sales companies and manufacturing divisions as subject matter expert.

b Gain a thorough understanding of IT Security landscape and issues in the Americas region and represent the Americas region to Panasonic HQ as IT Security leader.

c Recommend and design upgrades and enhancements to IT infrastructure to achieve higher levels of information security and data protection.

d Recommend and design security enhancements to IT Applications and assist application teams in implementing these enhancements.

2 IT Security Operations

a Manage and approve IT Security requests from vendors, users, and business partners.

b Provide approvals and advice to the Operations group for IT Security related issues and requests.

c Manage all network and web vulnerability scan activities.

d Manage the Panasonic PCI[p1] compliance requirement for E-Commerce activities.

e Work with IT Business Partners to ensure Panasonic business IT Security concerns are mitigated.

3 Project Management

a Propose and manage local and regional IT Security projects.

b Manage large global IT Security projects as proposed by Panasonic HQ.

c Assist with IT Infrastructure projects, especially in areas of IT Security.

d Coordinate Security aspects of global infrastructure and application projects in the Americas region.

4 Contracts

a Assist IT Compliance in ensuring that all vendor contracts appropriately enforce Panasonic information security requirements.

b Work with Legal Department as necessary to provide SME support in review of IT contracts.

c Work closely with IT Compliance and procurement in RFI/RFP process to ensure IT Security requirements are integrated into future vendor contracts.

5 Security policies

a Create technical security procedures documentation as well as security policies covering all aspects of IT Security.

b Design security role matrices for critical systems covering operating system, databases, and applications.

c Work closely with IT Compliance to ensure that security policies are adhered to by internal and external parties.

d Work closely with Risk Management in the areas of IT Security.

e Review project and vendor security policies to determine if adequate information security protection is offered.

6 Cloud/SaaS Security

Work closely with Panasonic HQ to complete detailed surveys of Cloud vendors and perform Risk Assessment of Cloud vendors.

Work closely with Panasonic HQ in completion of security reviews of Internet based services.

Represent the AM region to Global Security teams in Global Cloud solution initiatives

Assist IT Compliance with SaaS related compliance requirements

Assist Panasonic business units with assessment of Cloud security requirements

Establish processes for future reviews of security profiles of Cloud vendors.

7 SOX IT Security controls

Be responsible for the SOX ITGC Security Controls

Own the IT Security processes associated with these controls

Perform monthly testing of SOX IT Security controls

Work closely with IT Compliance and Audit Department during SOX audit

Report SOX testing results to all levels of management including CIO

Design and propose improvements to testing and audit processes

Design and propose improvements to Application Security processes critical to SOX

Qualifications

1 Scope ($, employees, and other resources manage. Attach organization chart)

a IT Security subject matter expert for a regional IT organization and internal consultant and champion of IT Security related matters.

2 Education and Experience

a Undergraduate degree in IS or related field desired.

b Security certifications are a plus.

c Minimum 10 years experience in technical IT Architecture and understanding of interaction between various IT Systems.

d Broad familiarity with logical security of applications, roles and access separation, access control and monitoring, and separation of duties.

e Experience with security audits, perimeter scanning, security incident investigations.

3 Key Competencies

a Major Strengths: General familiarity with IT Infrastructure such as network, DMZ, servers, virtualization, Citrix, web servers, applications, firewalls, databases, and application logical access.

b Other Key Strengths: Managing small IT Infrastructure and security projects, investigating security incidents, prioritizing security exposures, writing security policies.

c The ability to communicate security issues, considerations, and ROI on security activities to IT management and recommend improvements in systems, processes, and IT Security Architecture.

d Out of the box thinking in order to troubleshoot a variety of security issues, including coming up with creative solutions to solve security issues with optimal resources.

e Knowledge of Personal Information Protection policies and identification of associated policies.

f Knowledge of IT Security policies and procedures and standardization of security practices.

g Familiarity with security services such as encryption, authentication, and intrusion detection.

h Ability to define risks, establish requirements, and design solutions to remediate.

i Excellent written and verbal communication skills.

j Knowledge of information security controls and their application.

k Familiarity with Payment Card Industry Data Security Standards.

Primary Location : United States-New Jersey-Secaucus

Job : IT

Organization : Panasonic Corp of N. America

---