•The Information Security Testing Director will be responsible for all aspects of security testing conducted or managed by the Information Security group.
•This will include red-team testing, planned penetration tests, coordinating third-party penetration testing, and verification testing after significant control changes by the Network Technology and Operations (IT) organization.
• Additionally, the Director will also consult and govern security testing that occurs in other parts of the organization including static and dynamic analysis conducted by the Network Technology and Operations agile teams as a member of the Application Security Review Board.
•As a Director within the Information Security group, this role will also be a key leader in the Chief Information Security Officer’s (CISO) leadership team, be a part of the CISO succession plan, and act as the CISO’s delegate for internal and external meetings and committees.
•This position will require extensive hands-on technical testing abilities while also requiring an ability to govern and influence teams across Surescripts.
•A successful Information Security Testing Director should possess a deep understanding of both information security and computer science.
•They should understand basic concepts such as networking, applications, and operating system functionality and be able to learn advanced concepts such as application manipulation, exploit development, and stealthy operations.
•If you can exploit at scale while remaining stealthy, identify and exploit mis-configurations in network infrastructure, parse various types of output data, present relevant data in a digestible manner, think well outside the box, or are astute enough to quickly learn these skills, then you’re the type of information security leader we’re looking for.
“TAJ Technologies, Inc. is an EEO/AA Employer: women, minorities, the disabled and veterans are encouraged to apply”