Sr. Consulting Manager - Information Security Risk and Compliance

The mission of VeriSign® Global Security Consulting (GSC) is to blend unmatched security expertise with world-class business and program management in order to provide comprehensive enterprise security solutions to our clients. Our experts combine business driven approaches with technology expertise in order to deliver maximum client satisfaction. VeriSign security consultants average 10 years of experience. They are professionals who have actually experienced real-world security and compliance implementations. http://www.verisign.com/global-consulting/security-consulting/index.html VeriSign is seeking motivated and knowledgeable Senior Consulting Managers to join our Global Security Consulting Organization.  ·  This is a Full time (remote/ home office based) employment opportunity with VeriSign, Inc.·  This position requires business travel: candidates must be flexible, willing and able to travel for business purposes when needed at least 50% up to 100%. (Monday - Friday, travel varies and based on client requirements) POSITION DETAILS A Sr. Consulting Manager possesses expert Level knowledge and experience in information security and/or relevant information technology best practices and standards with a heavy concentration on solving customer security challenges. Functional Responsibilities and Skills Lead teams on large scale, complex projects. Contribute a significant piece of a project deliverable. Ability to create detailed, professional documentation to be delivered to client. Able to create and recommend remediation for components of security policies. Provide specific recommendations for a clients business or technical issues.  Understanding of three or more regulatory areas including, but not limited to: PCI (Visa CISP, MasterCard SDP, Discover DISC, Amex DSOP) ISO 27002 GLBA HIPAA FFIEC SOX Can strategically drive creation, management, and oversight of Information Security Programs, Business Continuity Planning and Change Control functions for Information Services Familiar with retail information security challenges a plus Excellent organizational, interpersonal, written and verbal communications. Ability to meet and communicate with clients, lead investigative interviews, and capture responses in a logical and concise form Contribute to sales support activities, e.g. sales meetings, Statement of Work and proposal writing Capability in analysis, problem identification, problem solving, and presentations Strong analytical skills and attention to detail Ability to perform comfortably in a deadline-oriented work environment. Technical Responsibilities and Skills Technical and enterprise problem / resolution skills 10+ years of information security experience preferably with prior management experience. Advanced level infrastructure or security design capabilities for environments that include 100 to 1000 security devices, processes or applications. Knowledge with different application architectures and platforms, their development challenges, their control configurations, and their inherent security strengths and weaknesses (e.g., ColdFusion, J2EE, .Net) Strong technical skills in smart card, PKI, biometric or identity management systems Experience in systems integration projects involving security, ID authentication and management, biometrics, PKI, smart card, and/or e-government. Experience with HSPD-12 implementations a strong plus Experience with project management tools, including Microsoft Project Experienced implementing physical access security solutions Experience with conducting privacy impact assessments, risk analysis and assessments, certification and accreditation, and policy analysis Experience in or with local, state, or federal government; Experience with FIPS 201 and NIST Knowledge of information security or privacy laws, regulations, and policy, including OMB Guidance and Circulars, the E-Government Act, FISMA, the Consolidated Appropriations Act of 2005, and NIST Special Publications Knowledge of best practices and procedures for the application of IT privacy solutions, including conducting security or privacy risk assessments, gap analyses, program reviews or audits for clients based upon organizational structure and data handling processes, needs, and the vendor provider, or COTS tools preferred Ability to understand the impact of information security or the privacy risks of an information system and the larger organization and how risks may affect a client's goals and objectives Mid to advanced level network administration (thorough protocol experience) Firewalls IDS/IPS Systems Enterprise level network architecture Mid to advanced level security knowledge Internet attack anatomy Perimeter protection strategies Security Policy structure Mid to advanced level methods knowledge of one of the following: Penetration testing (network, system and application) Application development Policy Development Ability to travel as needed Educational Requirements Bachelor of Science or equivalent experience; Minimum of two technical certifications such as CISSP, QSA, CISM, CISA, CCNA, CCDA, CCSA, GIAC. At VeriSign, we care about our employees and provide a comprehensive, flexible benefits package that empowers individuals and families to choose options that best meet their needs. As a result of our rich diversity and competitive advantage, we have compiled a full range of first-rate options, including health, welfare and financial plans, as well as risk management plans and more.  VeriSign provides its employees with a variety of additional perks, such as tuition reimbursement and health club reimbursement. All in all, we offer one of the most comprehensive, convenient, flexible benefits plans for those who work in our dynamic environment.