Information Security Officer
Pacific Life Insurance Company Newport Beach, CA
Currently, we are seeking a talented Business Information Security Officer to join the Corporate Division in Newport Beach. The Corporate Division supports the goals and initiatives of all other divisions throughout the company and its subsidiaries. These departments include: Human Resources, Finance, Information Technology, Corporate Development, Public Affairs, Safety & Security, Legal & Compliance.
The Business Information Security Officer (BISO) functions as a strategic partner to business leaders in their implementation of Pacific Lifes information security program. Using a consultative approach, the BISO serves as a security subject matter expert and proactively drives alignment between business unit objectives and the enterprise security strategy. Additionally, the BISO provides independent and objective oversight and monitoring of the information security and business continuity programs.
Serve as a strategic partner and security thought leader to lead the implementation and maintenance of the information security program within designated business unit(s)
Work with the CISO to provide independent and objective oversight and monitoring of the information security and business continuity programs within designated business unit(s)
Facilitate bidirectional communication between business unit(s) and enterprise security while advocating for both in a balanced manner
Consult with and advise business and IT leaders in proactively establishing, implementing, and monitoring information security controls within designated business unit(s)
Initiate and coordinate incident response activities between the centralized incident response team and business unit technical teams in accordance with the Incident Response process
Perform security and business continuity risk assessments and provide recommendations that balance risk management with business objectives
Facilitate discussions for the risk-informed adjudication of control exception requests and assist business unit(s) with appropriate documentation and communication of approval/rejection
Provide regular program updates to senior/executive management, risk management committees, and program stakeholders within designated business unit(s)
Own an enterprise service within the Enterprise Service Model such as Cybersecurity Training and Awareness, Identity and Access Management, Risk Management, Controls framework, etc.
Actively participates in developing and delivering relevant security training and awareness material
Foster accountability for security and business continuity with business unit management and data/control owners
FACTORS FOR SUCCESS
Extensive experience/knowledge of information security principles and best practices across all IT domains (network, application, computer, cloud, etc.)
Experience in building, implementing, and managing enterprise-level information security programs
Solid technical acumen and strong consultative skills.
Ability to recognize and execute on strategic and adjacent opportunities to create efficiencies or reduce risk.
Effective team/relationship building and leadership skills across divisional and departmental
organization structures to accomplish enterprise wide goals.
Experience approaching issues/opportunities from a business perspective to balance risk management with business objectives.
Exhibit Pacific Lifes values including People, Accountability, Customer Focus, Integrity, Financial Strength, Innovation and Community.
Effectively cope with change and shift gears comfortably.
Degree: BS, preferred
Certifications: CISSP or equivalent security certification(s) is strongly preferred
| Date Posted
November 28, 2018
| Date Closes
December 28, 2018
| Located In
Newport beach, CA
| SOC Category