Kentucky Farm Bureau Mutual Ins Co

  • Security Specialist

    Job Locations US-KY-Louisville
    Posted Date 1 week ago(6/12/2018 3:55 PM)
    Job ID
    2018-1209
    # of Openings
    1
    Category
    Information Technology
  • Overview

    The Security Specialist’s primary goal is to help develop the overall strategy to control and protect KFB’s information resources.  This includes the responsibility for:

    • Evaluating and recommending security tools and technologies to help manage business risks.
    • Performing security risk assessments to evaluate security exposures associated with applications, technologies and business concepts (either internally or through an outside entity)..
    • Developing security standards, procedures and guidelines.
    • Developing and maintaining a security awareness program, and assisting with the implementation of new security tools, technologies and procedures.

    Responsibilities

    ESSENTIAL FUNCTIONS

    • Provision/update end-user and administrative access to key resources using AD.
    • Evaluate the use of automated tools to manage and monitor the information security environment.
    • Participate in projects from all areas of the company to evaluate risk of the project initiatives and provide assistance in developing an appropriately controlled solution.
    • Provide support for the implementation and training of security administrators.
    • Periodically evaluate and update security policies to reflect KFB’s changing technological and business environment.
    • Assist in maintaining the information security classification schema for use throughout KFB.
    • Assist troubleshooting network security access problems to ensures network (LAN/WAN, telecommunications and Internet) security access controls continue to meet company requirements.
    • Provide guidance and support to other IT functions and other interested parties regarding security issues and exposures.
    • Assist with development and implementation of KFB-wide security awareness and training programs.
    • Evaluate the effectiveness of the security awareness and training program.
    • Support general audit and compliance audit functions.
    • Assist with support of all security-related functions.
    • Fulfill administrative reporting requirements.
    • Regular predictable attendance as employee has to physically be in the office.
    • This list of essential functions is non-exhaustive and may be supplemented as necessary.

     

    OTHER RESPONSIBILITIES

    • Participates in project work assigned; up to and including leading security projects.
    • Participates in the analysis, consultation and action plans for projects based on Security systems knowledge.
    • Contributes to standards development in other IT areas.
    • Mentors programming, technical staff, security administrators and end users.
    • Assists with in-house training classes and security presentations as needed.

     

    JOB SPECIFICATIONS

    • Physical demands: Sitting; Normal Vision (with or without correction); Be available for 24 hours on call on a rotation basis; Stress of working overtime as required.
    • Mental demands: Prolonged concentration; Analytical reasoning; Stress of meeting deadlines and dealing with critical security issues.
    • Environmental factors: Standard office lighting, temperature and noise.
    • Equipment: Telephone, Personal computer; Keyboard/Mouse.

    Qualifications

    • Four-year college or university program degree; or five years related experience and/or training; or equivalent combination of education and experience.
    • Must have excellent research and problem-solving skills in order to analyze problems, gather information, and develop alternative solutions. Must work well in group problem solving situations.
    • 3-5 years information security work experience required.
    • CISSP, CISA, or other security related certification preferred.
    • Previous experience with mainframe environment, acting as RACF administrator and using Vanguard reports and possibly knowledge of CICS and TSO resources is desired, but not mandatory.
    • Experience with information security products including analysis, design implementation maintenance, support and training will be preferred.
    • Above average written and verbal communications.
    • High ethics; verifiable work experience in security and/or information sensitive environment.

    #CB

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed