Director, Information Security - Wind River - Alameda CA

Director, Information Security 
Job Code : 4667
Division : 110
Location : Alameda CA US 94501
Job Type : Full Time
Career Level : Manager (Manager/Supervisor of Staff)
Education : Bachelor's Degree
Category : IT/Software Development

Job Description :

Wind River®, recently named one of the best places to work by the Bay Area News Group in its esteemed Top Workplaces 2014 list, is a wholly owned subsidiary of Intel® Corporation.  We are a global leader in delivering software for intelligent connected systems and offer a comprehensive, end-to-end portfolio of solutions ideally suited to address the emerging needs of IoT, from the secure and managed intelligent devices at the edge, to the gateway, into the critical network infrastructure, and up into the cloud. Wind River technology is found in nearly 2 billion devices and is backed by world-class professional services and award-winning customer support.

General Summary of Position:  

Reporting directly to the CIO, you will be responsible for creating a high-level picture of risk, identifying and assessing emerging risks, coordinating with cross-functional groups to address risk, and mapping regulations to a rationalized controls framework. The ideal candidate will be responsible for maintaining a forward-looking set of policies, design awareness efforts, standardize a risk assessment process, detail comprehensive incident response processes, and coordinate the testing of continuity and disaster plans.

You will provide subject matter expertise for incident response, internal investigations involving malware or software fraud, and development of internal data security policies and awareness programs. The ideal candidate will be responsible for IT information security efforts across the company, and will have the opportunity to use skills and professional experience in malware, incident response and investigations to develop practices and procedures that provide protection against emerging threats. You will collaborate with other companies and government agencies as appropriate.

Wind River, a wholly owned subsidiary of Intel, and has offices around the world. You will work with colleagues across the globe as needed.

Major Responsibilities:  

  • Manage the development and implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of information security.
  • Analyze business and global trends to identify security goals, objectives and metrics.
  • Adopt a proactive approach using planning, tools, and technologies to minimize future threats and incidents.
  • Work with executives to prioritize security initiatives and spending based on appropriate risk management.
  • Oversee incident response planning as well as investigation of security breaches.
  • Work with outside consultants for independent security audits.
  • Monitor information security trends internal and external to Wind River and keep senior management informed about information security-related issues and activities affecting the organization.
  • Maintain relationships with Intel Security and with law enforcement as necessary.

Core Skills and Experience Required:

  • Solid understanding of information technology and information security.
  • 10 years’ experience in information technology and security in an international, high tech environment.
  • Strong analytic and decision making skills.
  • Ability to communicate complex concepts clearly, both verbally and in writing.
  • Knowledge of common vulnerabilities, vulnerability analysis, and mitigation methodologies.
  • Familiarity with network technologies and core internet protocols.
  • Experience with encryption and related technologies.
  • Experience with legal and regulatory issues that require security controls and capabilities for compliance.
  • Should have experience with business continuity planning, auditing, and risk management, as well as contract and vendor negotiation.

Core Competencies:

  • Ability to work in a self-directed and independent manner.
  • Must be an intelligent, articulate and persuasive leader who can serve as an effective member of the senior management team and who is able to communicate security-related concepts to a broad range of technical and non-technical staff.
  • Ability to work with people from different cultural and technical backgrounds
  • Must have strong working knowledge of pertinent law and the law enforcement community.

Educational/Training Requirements:

  • Bachelor’s in Information Technology, Security or related degree.
  • Two industry security certifications. At least one must be CISM or CISSP but others will be considered.

Click Here to Submit Your Resume to this Position