We are currently seeking a Director, Information Systems/Information Security Officer at our St. Louis, MO headquarters. The Director, Information Systems/Information Security Officer is responsible for all servers, telecommunications, security, backup and recovery, disaster recovery and hotsite, virus protection and network. This position will provide direct supervision to PC Technicians, Network Administrators, Security Administrator, and the IS Inventory/Purchasing Coordinator. Provide HelpDesk support for all user PC, network, telephone and building access system issues.

This position is also responsible for managing information security risk to acceptable levels and the identification of appropriate countermeasures to mitigate security risk impacting business segments.  This position will collaboratively participate in the creation and execution of Information Security strategy that encompasses creative, cost effective, and pragmatic solutions to the dynamic requirements of the business and the marketplace. In addition, the ISO will be responsible for the ongoing assessment of the security strategies employed by client and its constituent parts.

Responsibilities:

• Responsible for the development of the Network Systems Budget, monthly budget review and adherence.
• Implement and support Disaster Recovery plan and Hotsite.
• Provide project management for all server, software, operating system and network upgrades and installation.
• Ensure adherence to COBIT and SOX standards and guidelines for security, data integrity, data and system availability.
• Develop Network Systems performance metrics to ensure continuous improvement.
• Implement virus protection and application software, update and enforce policies and procedures.
• Responsible for supervising all areas of Backup and recovery process.
• Manage and maintain all routers, switches, hubs and cabling.
• Monitor, maintain and enhance all remote user access capabilities based on user requirements.
• Insure workstation and server standards are developed and maintained.
• Provide guidelines and standards in the development of necessary workstation software and hardware upgrades including virus protection, service pack upgrades and operating systems.
• Develop and enforce email file sizing/archiving standards and procedures.
• Develop and enforce server file storage standards.
• Conduct performance reviews for PC Technicians, Network Admins and other technical people as required under your supervision.
• Assist other departments in the organization as they provide support to customer requirements and product development.
• Responsible for identifying information security risk within the enterprise and setting priorities for risk mitigation efforts. Provides oversight to ensure technical compliance with security related regulatory requirements (SOX, Patriot Act). 
• VPIS liaison to the Business for Matters of Information Security: Initiates and provides leadership, strategic/tactical direction and input to the business in the development of a security program which meets current and anticipated business requirements and objectives. Serves as point of contact and the escalation point between the client/business area and Information Systems for the resolution of unresolved problems (risk acceptances), Audit issues related to Information Security, and complex service requests.
• VPIS representative for all Information Security Remediation Efforts:  Represent VPIS in all information security activities (e.g., security posture assessments, compliance monitoring, etc) that impact the business.  Responsible for communicating and reporting on activities and collaborating with VPIS to resolve any issues that arise as a result of the activities.

Qualifications:

• Bachelor’s degree in Computer Information Systems, Computer Science, or equivalent.
• 5-7 years experience in a security role with strong working knowledge and understanding of information security frameworks, incident management, operations and application security best practices.
• The professional presence to communicate the state of risk exposure to top-level business executives, technical staff, business unit leaders, auditors, and customers.
• A progressive career track record with extensive understanding of how to organize prevention, detection and verification programs associated with information security and risk management.
• CISSP, CISA or CISM required.
• 4-8 years experience in Server and Network support and maintenance.
• MCSE preferred. 2 + years experience in PC, printer and Help Desk support.
• NT Server/ Workstation, Windows 2000, Exchange, Outlook, Cisco Routers, Veritas Backup Exec.
• 2-3 years hands-on experience working with VMWare. Lab Manager a Plus.
• 2-3 years experience deploying and supporting Cisco Unified Comunications solutions.
• 3-5 years experience in a supervisory role within an IS/IT department.
• Project Management experience for mid-sized projects.
• Budgetary responsibility for IS/IT department.
• Excellent technical and communication skills. Strong leadership skills.