Security & Records Management Senior Specialist-1010742

 Job Description

 Research In Motion Limited® (RIM)®is a world leader in the mobile communications market and has a history of developing breakthrough wireless solutions. RIM's portfolio of award-winning products, services and embedded technologies is used by thousands of organizations around the world and includes the BlackBerry® wireless platform, the RIM Wireless Handheld™ product line, software development tools and software/hardware licensing agreements. RIM is seeking driven individuals who can take our wireless data products to the next level in the global wireless market. Are you ready to make a difference in the world of mobile communications with RIM?

 The Security & Records Management Senior Specialist  works as part of an integrated Security function to ensure that Security Governance, risk management and records management frameworks are effectively implemented and maintained along with the overall Security Management System (based on ISO27001).

RESPONSIBILITIES

The successful candidate's responsibilities will include:  

• Ensure that the Risk Management and Security Governance framework is effectively implemented and maintained.
• Ensure that identified risks are appropriately documented, priorities set and risk mitigation or acceptance processes engaged.
• Participate in and administer the ISO27001 security certification program.
• Provide guidance and leadership to all business units on compliance requirements for ISO27001 and associated standards.
• Develop a risk profile (as it relates to Corporate Security) for the organization, including key risk areas, risk tolerance, ability and capacity to mitigate risks.
• Support Corporate Security (Enterprise Architecture) in identification, documentation and assessment of security exceptions from a risk perspective.
• Maintain an effective Security Governance, Risk and Records Management Program at RIM.
• Develop policy and procedures and provide best practice consultation and processes to assist the company in managing its records in a secure manner to meet business and legal/regulatory/risk needs.
• Engage in delivery of effective Security Governance, Risk and Records Management education and training to meet program objectives.
• Oversee maintenance of documentation and published material related to Security Governance, Risk and Records Management policy, processes, procedures, and training; responsible for designing, developing and implementing a team Intranet area.
• Consult on conducting records inventories to support the development of an enterprise-wide records retention schedule by gathering data, surveying the organization, and reviewing business processes as directed and in coordination with Legal.
• Establishes and maintains strong working relationships with other Team Leads, Managers and analysts involved in Information Security, Information Technology and Legal.
• Support and help drive Corporate Security and company initiatives as required

Qualifications

ESSENTIAL SKILLS AND QUALIFICATIONS

• Ability to analyze security related issues from a risk management perspective and propose effective policy related solutions to solve complex problems
• Experience with information security threats, vulnerabilities and countermeasures along with knowledge of computing and networking infrastructures
• Experience with Archer Governance, Risk and Compliance Solutions tools an asset, especially Archer Policy Management
• IT Audit knowledge and experience an asset
• Knowledge of information security management best practices and standards;  knowledge of ISO 27001 and other leading standards, e.g. NIST and CobIT are assets
• Experience conducting risk and vulnerability assessments of both physical and electronic systems
• Ability to acquire, understand and incorporate business requirements into security solution recommendations
• Six Sigma Yellow or Green Belt training an advantage
• CISSP, CISA, and SANS Security certifications are assets

EDUCATIONAL / CERTIFICATION REQUIREMENTS AND RELEVANT EXPERIENCE

• Degree in Computer Science or related discipline, or equivalent work experience.
• Extensive Information Security related experience; 8-10 years in IT or related area.
• Risk management, Records management or privacy experiences an asset.

If you're driven to take wireless technologies to the next level, it's time you join the team at RIM. We offer a challenging environment that fosters creativity and rewards excellence. Employees also have use of our award winning BlackBerry!

© 2010 Research In Motion Limited. All Rights Reserved. The BlackBerry and RIM families of related marks, images and symbols are the exclusive properties of Research In Motion Limited. RIM, BlackBerry, "Always On, Always Connected" and the "envelope in motion" symbol are registered with the U.S. Patent and Trademark Office and may be pending or registered in other countries.

If this opportunity is of interest to you and you would like to be considered, please apply online.  If this opportunity does not match your career aspirations, we are still interested in knowing about you. We would encourage you to submit a general profile and sign-up for our automatic email notifier. This will allow us to contact you should an opportunity come up that matches your preferences.

Please note that only those applicants who apply on-line will be considered.

 We thank you for your interest in Research In Motion and look forward to hearing from you.

 For a list of all current opportunities, please visit www.rim.com/careers.

Add a Response

You need to log in to post messages. Click here to login.