• Senior Manager - IT Security and Compliance

    Job Locations US-TX-Houston
    Posted Date 2 months ago(5/31/2019 10:15 AM)
    ID
    2019-3443
    Company Name
    SESI Corporate, LLC
    Category
    IT
  • Overview

     

    SESI Logo (Large)

     

    About Superior Energy Services

    Superior Energy Services is a provider of specialized oilfield services and equipment, focused on serving the drilling and production-related needs of oil and gas companies as well as the plug and abandonment and decommissioning services required at the end of a well's life. The world's energy producers rely on us for the services, tools, equipment and exceptionally trained personnel needed to enhance and maintain the production of oil and gas wells. We play a vital role in all phases of a well's lifecycle — drilling, production and decommissioning.

     

    Please feel free to review more information regarding Superior Energy Services at http://www.superiorenergy.com/

     

    About Superior Energy Services Information Technology Group

    Superior Energy Services Information Technology Group is the information systems backbone for Superior Energy Services Corporate and all of its subsidiaries. The group is developing into an internal resource to assist the corporation with strategic goals and direction by supporting its internal clients with excellent service for hardware, software and data delivery.  The Direction and Goals for the group are to deliver effective and efficient service to support and assist the ever changing environment within this dynamic and exciting industry.

     

    Superior Energy Services Information Technology Group is currently looking for a Senior Manager - IT Security and Compliance to join our team in Houston, TX.

     

    Summary:

     

    The IT Security and Compliance Manager will be the corporate IT expert for technical security and risk management as well as conduct all compliance related items for the IT department to maintain corporate standards. This highly advanced security individual will have knowledge of global data protection regulations as well as leading industry security standards. The ability to work within a developing and diverse global organization will be pertinent to the success of the role. The ability to work with a wide variety of information security technologies while understanding and coordinating with IT audit and compliance is required for this role.

     

    This leader will be working with a wide variety of personnel from different IT Organizational Units teams within Superior’s enterprise to support the company’s risk tolerance and security compliance requirements to ensure that adequate and effective security processes are reviewed, assessed, measured and installed within the IT department. This person will bring these organizations various personnel and teams together to manifest controls, procedures, policies, and technologies that reflect workable compromises as well as proactive responses to current and future information security risks. This will enable the company to produce metrics and communication deliverables to Senior Management. These controls and lifecycles are followed and aligned to deliver compliance for systems and networks within the company’s IT Infrastructure.

     

    Requirements:

    • Minimum of 10 Years’ experience in an Information Security office directing, analyzing and applying security as well as risk management and privacy practices for all company data
    • Minimum of 5 Years’ experience designing and implementing enterprise security solutions
    • Minimum of 5 Years’ experience with information security architecture or operations
    • Minimum of 8 Years’ experience with any combination of the following: Researching, Recommending, Implementing Changes to Enhance Systems Security
    • Minimum of 5 Years’ auditing and/or compliance within a corporate environment
    • Minimum of 5 years’ managing personnel
    • Excellent time management skills under difficult time constraints
    • Experience communicating conceptual and technical information to non-technical personnel
    • Experience translating technical data into business impact information
    • Expert knowledge of security methodologies and technologies

    Responsibilities:

    • Responsible for development, maintenance, oversight, and operation of security tools, processes, and policies to defend, detect, and respond to threats, vulnerabilities, and attacks targeting the corporate network
    • Conduct risk assessments, mapping data flow for privacy risks, design privacy policies and procedures
    • Implements an IT security architecture, infrastructure, and strategy to meet corporate information and data security requirements, business objectives, and government regulatory requirements
    • Manages the development and implementation of enterprise security policy, standards, guidelines, and procedures to maintain the security or corporate networks and systems
    • Initiates and participates with external consultants and external/internal auditors to conduct independent corporate security risk assessments and audits; coordinates corrective actions for identified security exposures
    • Creates action plans, schedules, status reports and other senior management communications intended to track and improve the status of information security, including security vulnerabilities, risk-mitigating initiatives, policy compliance status and regulatory compliance status
    • Comprehends “client voice and message” and develops mechanisms to proactively sense adoption and usage patterns of consumer technologies by end users so policies can align with corporate needs
    • Performs and/or oversees the performance of periodic risk assessments that identify current and future internal and external security vulnerabilities, provides necessary information to derive decisions about risk acceptance and risk mitigation, and identifies the best ways to reduce information security  risks
    • Understands the trade-offs required to manage different levels of risk tolerance and risk exposure across the technical organization and balance this with risk investments
    • Provides security review, recommendations and language as required for request for proposal (RFP), request for information (RFI), statement of work (SOW) and related contractual documents
    • Initiates and participates with external consultants and external/internal auditors to conduct independent corporate security risk assessments and audits; coordinates corrective actions for identified security exposures
    • Works with upper management to determine acceptable levels of risk for the enterprise

    Education:

    • Degree in Computer Science, Engineering, MIS, or related discipline or equivalent experience required;
    • Certified Information Systems Security Professional (CISSP, ISC, CISM) preferred

    Work Location(s): Houston, Texas Primary

    Travel Requirements: <25%

     

    Excellent Benefits

    Medical, Dental, Vision, Disability, Life, Matching 401(k), Employee Stock Purchase Plan

     

    Superior Energy Services and its subsidiaries are Equal Opportunity and Affirmative Action Employers for Minorities/Women/Veterans/Disabled.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Need help finding the right job?

    We can recommend jobs specifically for you! Click here to get started.