IT Security & Compliance Resume Sample
Work Experience
- Experience in Information Security
- Interact with management team for updates, insights and problem solving
- Report project status and issues to Chief Information Officer
- Manage a dynamic team of service providers and consultants working on IT security projects or performing related services
- Provide statewide leadership in the analysis, resolution and maintenance of Information Technology risks, threats, vulnerabilities and protection requirements
- Advise the CRO as a subject matter expert on Cybersecurity Incident Response
- Develop and maintain incident response strategy and the DIT Cybersecurity Incident Response Plan
- Work with appropriate organizational authorities to help define a formal security road map or strategy to identify and address statewide information security needs
- Develop information technology and security policies and procedures
- Develop and deliver table-top exercises under the SCRO. Table-top exercises assess the effectiveness of cyber incident response capabilities across people, processes, and technology
- Managing staff in the completion of engagements on time with limited necessary revision
- Develop and provide security metrics and reports
- Drive integration of increased cybersecurity capabilities and acquired tools in support of the Statewide IT and Security Strategic Plan
- Review, recommend and monitor progress of all security aspects related to agency projects
- Make recommendations and provide SME consultation to the State's senior IT Managers
- Implement selected security technology and appropriate supporting policies and procedures
- Produce statewide policies standards, procedures and documentation in support of the technology implementation
- Perform testing of security solutions to ensure compliance and produce thorough written reports for technical staff and management
- Monitor for agency compliance with statewide policies, standards and procedures
- Research and evaluate security technologies to identify strategic enterprise approaches for the deployment of security technologies that permit the state to benefit from standardization and economies of scale
- Lead cybersecurity and incident response training exercises
- Direct and drive the assessment, creation, and the implementation of DSW’s enterprise Information security standards, using innovation, in IT Security policies and practices leading to a highly visible, high-impact program that is recognized and valued by our associates and executives
- Act as a senior member of the IT Leadership team capable of driving shared vision, leadership, leadership team development and capable of broadly representing IT Strategies and security principles with DSW’s executives and associates
- In cooperation with the CIO, direct the development, design, and implementation of an innovative and effective strategy and security processes, to protect our valuable technology assets from harm or loss
- Develops, maintains and delivers upon credible execution plans to implement the security strategy
- Directs staff in identifying, developing, implementing, and maintaining security standards, processes, controls, practices, procedures, and policies throughout the organization
Education
Professional Skills
- Strong collaboration, critical thinking skills and ability to think big picture
- Excellent written and verbal communication skills with the ability to present control analysis and recommendations with clarity and professionalism
- Outstanding verbal/written communication, collaboration, presentation skills to work within an environment driven by customer service and team work
- Superior skills in planning, managing and controlling activities of a diverse team
- Solid skills in at least one common scripting language (e.g. Python, VBA, PowerShell)
- Good MS Office skills (esp. Excel, PowerPoint)
- Good communication skills (verbal & e-mail)
How to write IT Security & Compliance Resume
IT Security & Compliance role is responsible for software, training, integration, database, mac, procurement, auditing, architecture, analysis, reporting.
To write great resume for it security & compliance job, your resume must include:
- Your contact information
- Work experience
- Education
- Skill listing
Contact Information For IT Security & Compliance Resume
The section contact information is important in your it security & compliance resume. The recruiter has to be able to contact you ASAP if they like to offer you the job. This is why you need to provide your:
- First and last name
- Telephone number
Work Experience in Your IT Security & Compliance Resume
The section work experience is an essential part of your it security & compliance resume. It’s the one thing the recruiter really cares about and pays the most attention to.
This section, however, is not just a list of your previous it security & compliance responsibilities. It's meant to present you as a wholesome candidate by showcasing your relevant accomplishments and should be tailored specifically to the particular it security & compliance position you're applying to.
The work experience section should be the detailed summary of your latest 3 or 4 positions.
Representative IT Security & Compliance resume experience can include:
- Researches and deploys technology solutions and innovative security and management techniques to safeguard the organization’s assets, including intellectual property
- Strong knowledge of Information Security best practice, as well as conceptual understanding of cybersecurity technologies
- Strong communications and public-speaking abilities
- Understanding of Risk management methodologies and tools
- Provide expertise in defining and improving the security of DSW products via interaction with R&D
- Develop associate and executive protection plans driving delivery through creative education, communication and direct engagement
Education on an IT Security & Compliance Resume
Make sure to make education a priority on your it security & compliance resume. If you’ve been working for a few years and have a few solid positions to show, put your education after your it security & compliance experience. For example, if you have a Ph.D in Neuroscience and a Master's in the same sphere, just list your Ph.D. Besides the doctorate, Master’s degrees go next, followed by Bachelor’s and finally, Associate’s degree.
Additional details to include:
- School you graduated from
- Major/ minor
- Year of graduation
- Location of school
These are the four additional pieces of information you should mention when listing your education on your resume.
Professional Skills in IT Security & Compliance Resume
When listing skills on your it security & compliance resume, remember always to be honest about your level of ability. Include the Skills section after experience.
Present the most important skills in your resume, there's a list of typical it security & compliance skills:
- Solid project management skills. Confidence and leadership as a member of project teams in a cross-functional environment
- Communicating effectively through clear written and verbal communications and active listening
- Executive present and the ability to communicate effectively across all level of the organization
- Experience designing data security strategies and managing both internal and external resources to execute the associated processes
- Five + years’ experience leading and managing IT projects and teams
- Experience establishing and managing security vendor and consultant relationships
List of Typical Experience For an IT Security & Compliance Resume
Experience For IT Security & Compliance Manager Resume
- Proven track record of security and compliance analysis and execution
- Monitor the several elements of Trustwave software platforms in order to ensure that
- Technical Lead for enhancement and support of Certificate Lifecycle Management tool – Includes becoming the technical lead for Venafi, as well as its integration points to Verisign and Microsoft Certificate Authority’s. Accountable for the enhancement, support, technical documentation and interfaces associated with the Venafi tool
- Serve as WG’s technical security advisor to third party service provider resources engaged in the operational management of system configurations, upgrades, and security tuning and project support
- Maintain policies and control standards required for the general operation of KPMG's IT compliance program and related activities to ensure that the KPMG's IT controls framework is operating effectively and in accordance with its business and regulatory requirements
- Collaborate with internal KPMG Technology service groups to review appropriate control measures, procedures and evidence to ensure continuous compliance with firm IT policies, governmental regulations and customer requirements
- Monitor and as needed, report compliance activities of other departments to remain abreast of the status of all compliance activities and to identify trends
- Report against in progress corrective action plans for resolution of problematic issues, and provide management with summary information on the status of the portfolio of corrective action plan
- Monitor the performance of the key KPMG compliance program components and related activities on a continuing basis, and reporting to management as appropriate
Experience For Director, IT Security & Compliance Resume
- Familiarity with the Sarbanes Oxley Act and the Public Company Accounting Oversight Board required, NIST, ISO, HITRUST, AICPA trust principles and other relative IT and Information Security Frameworks
- Overseeing all IT security, leads security initiatives and manages audits and responses, while serving as an escalation point for all critical security concerns
- Managing all Security team employees, supports the junior members of the Security team and mentors them
- Assists with cross-training of team members to ensure no single points of failure and a well rounded team
- Design and continuously improve security framework
- Ensure compliance with SEC/NFA guidelines, HIPPA, ISO 27001, COBIT, and NIST standards
Experience For Lead IT Security & Compliance Resume
- Familiarity with the following products and vendors: Zendesk, Zingtree, Cisco Enterprise, Meraki, Jamf, Apple, Mac OS, iOS, Google Enterprise (GSuite), Chrome OS, Chromebooks, Microsoft, Exchange, Active Directory, Printers, SMART boards and interactive panels, SMART Notebook, ActivInspire, and Promethean interactive panels
- Technical understanding of security definitions, systems and technology at large
- Holds security certifications or equivalent knowledge in CTPC, CPTE, CompTIA Security+, CSTA, GPEN, OSCP, CEH, ECSA, CEPT
- Develop and drive an integrated IT & Security strategy, combining industry leading physical and digital security practices, and associate knowledge capabilities, with cyber security elements such as data security practices, monitoring, response activities and predicative modeling across the DSW inc companies
- In cooperation with the CIO, direct the develop, design and implementation of an innovative and effective strategy and security processes, to protect our valuable technology assets from harm or loss
- Ensures all companies within DSW Inc’s compliance with regulatory and standard agencies (ISO, Sarbanes-Oxley, PCI, etc.) as it applies to our Company
Experience For Dir IT Security & Compliance Resume
- Payment Card Industry Data Security Standard (PCI)
- Architect and monitor key security systems (LogRhythm, Checkpoint IDS/IPS, Mojo, Cylance, Crowdstrike, Intune, etc) on a daily basis to address or escalate any identified exceptions
- Design and monitor data security dashboards to provide both real-time and daily/monthly visibility into the health of the N&C data security landscape
- Coordinate the efforts of data security partners to ensure a comprehensive, strategic approach
- Coordinate regular review of the N&C PC security update plan, implement the systems to execute this plan and monitor all deployed PCs enrolled mobile devices to ensure compliance
Experience For Senior Manager IT Security & Compliance Resume
- Experience in IT risk management, audit, or security with a focus on governance, risk, and compliance
- Manage several concurrent projects and prioritise demands
- Coordinate across respective teams for reducing cyber-risks
- Look at alternatives and consider different ways of solving problem
- Work in challenging and ambiguous environments
- Perform cyber-security risk assessments
Experience For Senior IT Security & Compliance Manager Resume
- Develop and maintain cyber-risk register
- Monitor cyber-security vulnerabilities and threats
- Propose and implement cyber-risk mitigation strategies
- Create, implement and manage cyber-security solutions
- Communicate cyber-risk with key business stakeholders
- Trigger and supervise the investigation of cyber-security incidents
Experience For Senior Manager, IT Security Compliance Resume
- Develop and implement business continuity plans for cyber-incidents
- Ensure the compliance with relevant information security policies, standards and regulations
- Information Sciences, Technology
- Assist with IT security audits
- Management of IT professional(s) as well as external security engineer
- Act as an advisor to other functions such as Global Assurance (Compliance, Risk Management, Data Protection)
- Prepare analysis reports to senior management
Experience For Thip-senior Analyst IT Security & Compliance Resume
- Partner with business stakeholders in order to drive the IT security strategy forward
- Exceptional communication, collaboration and organizational management skills, coupled with ability to build and maintain strong relationships and work well with senior management, different cultures as well as cross-functional environments
- Leadership capabilities, including experience bringing ideas from concept to execution and building productive, collaborative relationships with other functions
- Experience researching and supporting new technologies
- Knowledge of Risk Management, Compliance, Audit, Information Security and Cybersecurity
List of Typical Skills For an IT Security & Compliance Resume
Skills For IT Security & Compliance Manager Resume
- Compliance and controls design, implementation and testing. Sarbanes Oxley (SOX) experience required
- Strong understanding of IDS & IPS technologies
- Strong understanding of Windows event log analysis
- Experience in root cause analysis, industry bench-marking, survey evaluation and data interpretation
- Experience in leading projects based on PM governance standards
- Experience supporting technology compliance for a publicly traded company required
- Demonstrate ability to take initiative and accountability for achieving results
- Demonstrated ability to scale security management to meet the needs of a growing organization
- Experience in IT compliance work, preferably in all three areas (PCI, SOX and Disaster Recovery)
Skills For Director, IT Security & Compliance Resume
- Data security and compliance experience required
- Formulating and implementing intrusion detection and prevention and data loss
- Developing and executing on incident response protocols
- Understanding of IT Security Vulnerabilities (e.g. CVE, CVSS)
- Expertise in areas such as encryption, hashing, Networking vulnerabilities, phishing, SSL, HTTPS, TLS, and VPN
Skills For Lead IT Security & Compliance Resume
- Analyse daily vulnerability and exploit monitoring, escalating findings and
- Capacity for analyzing current security landscape and translating gaps into IT security solutions
- Knowledge of new and emerging information technology (IT) and cybersecurity technologies
- Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data
- Knowledge of system life cycle management principles, including software security and usability
- Comfortable with meetings and leading discussions with senior staff
Skills For Dir IT Security & Compliance Resume
- Expert understanding of the SDLC (Software Development Life Cycle) process
- Hands-on role working directly to integrate the ISMS, Risk, Governance and IAM into current and new capabilities
- Oversight of the Information Security Management System and security forum steering committee
- Improve the security of DSW’s information infrastructure and minimize the threat of damage resulting from intrusions
- Manage and develop existing security framework and incident response protocols
- Lead the implementation of security platforms and systems, including installation, configuration and maintenance of security software; and
Skills For Senior Manager IT Security & Compliance Resume
- Exudes a calm, professional demeanor while acting decisively and with urgency
- Manage a crisis & declare incidents while calmly implementing contingency plans
- Advocates for our schools, providing real-time support and thoughtful solutions with both IT and non-IT initiatives
- MS Project, Windows OS and familiarity with nix
- Management of PCI compliance and Qualified Security Assessor activities
- Detailed knowledge of the PCI, SOX standards and compliance requirements
- Knowledge of Risk Management Framework (RMF) requirements
Skills For Senior IT Security & Compliance Manager Resume
- Knowledge of cyber threats and vulnerabilities
- Knowledge of security control requirements for HIPAA, PCI DSS, IRS 1075 and other federal compliance requirements
- Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
- Extensive understanding of computer and network forensics, system and network security, incident management, intrusion detection, vulnerability and patch management, log analysis, and related technologies
- Excellent communication skills; inter personal; organizational and analytical skills, written and verbal communications, experience with management presentations
- Strong customer focus and ability to manage customer/agency expectations
- Integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements)
Skills For Senior Manager, IT Security Compliance Resume
- Experience with enterprise information security data management tools and log analysis
- In liaison with the Trustwave’s ISA (Internal Security Advisor) develop a security
- CISSP, CISM, GIAC certifications highly desirable
- Comprehensive knowledge of business principles and techniques of administration, organization, and management including knowledge of strategic and operational planning, economics, personnel administration, marketing, financial and cost analysis, and general industry trends
- Strong leadership skills with a preference for managing an IT governance process for overall business benefit Ability to speak both extemporaneously and in formal settings
- Have the ability to apply logic and reason to solve complex problems
- Able to infuse innovation and creativity to strategic plans
- Possess knowledge in the area of emergency/disaster management, physical security, critical incident stress management, risk management and business resiliency
- Project Management Professional (PMP) certification. Internal Accessor Certification as issued by PCI
Skills For Thip-senior Analyst IT Security & Compliance Resume
- Technical proficiency with security-related systems and applications, especially
- Exert intellectual, emotional and political influence as the situation demands and influence without authority
- Ensures compliance with regulatory and standard agencies (ISO, Sarbanes-Oxley, PCI, etc.) as it applies to our Company
- Oversees, develops, educates and communicates security requirements and procedures to all personnel
- Directs the development of policies to ensure a secure operational environment for the connectivity and data repository of the DSW customer base for all hosted data centers
- Author security and disaster-related documentation within Hosting Operations including: Disaster Recovery Plan, Business Continuity Plan, security standards, and security policies
- Act as a liaison to local and federal authorities in the event of discovered criminal activity
Skills For Associate Director, IT Security Compliance Resume
- Stay current with the latest cyber security threat landscape and advise the Audit, Risk, Legal and IT leadership teams of applicability to the company’s systems
- Effectively articulate the risk/impact and costs to executives and others that aren’t as well versed in the subject matter in order to gain support for recommended actions
- Create and maintain the enterprise’s security documents (policies, standards, baselines, guidelines and procedures) to be approved by executive management
- Broad professional experience across a wide base of disciplines within corporate governance including
- Create, and maintain the enterprise’s security awareness training program
- Performance management metrics and reporting
- Contribute to metrics and the security team’s dashboard initiative
- Create and maintain the enterprise’s security architecture design
- Create and maintain the enterprise’s security documents (policies, standards, baselines, guidelines and procedures)
Skills For VP, IT Security & Compliance Resume
- Create and maintain the enterprise’s Business Continuity Plan and Disaster Recovery Plan, where appropriate
- Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’s existing procurement processes
- Oversee the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically
- Oversee the deployment, integration and configuration of new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically
- Experience in governance frameworks including ISO27000, HIPAA, SOCII, HITRUST, PCI, Sarbanes Oxley, GLBA and knowledge of GDRP (General Data Protection Regulation)
- Strong personality – ability and credibility to influence executives, key decision-makers, and highly technical resources
- Excited, interested and engaged in security and compliance and our business
- Customer-driven to understand and appropriately respond to customers' business needs