Monday, May 18, 2020

Director of Cybersecurity

Director of Cybersecurity

High-level responsibilities of the CyberSecurity, Privacy, Risk Management & Compliance Programs Leader:

  • Develop, Implement, Monitor & Report on all aspects of the CPRC Programs
  • Develops, initiates, maintains, and revises policies and procedures to ensure world-class security for the general operation of the compliance programs to ensure continued compliance of DIS products with laws and applicable regulations in the various countries Manages day-to-day operation of the compliance programs. Leads organization’s response to any cyber incidents and evaluating or recommending the initiation of investigative procedures.
  • Lead and oversee the efforts to gain various industry certifications (HITRUST, ISO 27001, GDPR, etc)
  • Collaborates with other departments (e.g., Risk Management, Internal Audit, Chief Privacy officer, Legal, IT, etc.)
  • Identifies potential areas of compliance vulnerability and risk; develops/implements corrective action plans for resolution of problematic issues, and provides general guidance on how to avoid or deal with similar situations in the future.
  • Monitors, and as necessary, coordinates compliance activities of other departments to remain abreast of the status of all compliance activities and to identify trends.
  • Direct and approve the design of systems for security and privacy policies.
  • Review and approve security policies, controls and cyber incident response planning.
  • Ensure that disaster recovery and business continuity plans are in place and tested.
  • Schedule periodic compliance audits (CyberSecurity, Privacy, Risk Mgmt, etc)

Who You are

You’re someone who wants to influence your own development. You’re looking for a company where you have the opportunity to pursue your interests across functions and geographies. Where a job title is not considered the final definition of who you are, but the starting point.

Education:

  • BS in science, engineering or relevant area of study, required.
  • Master’s degree in relevant area of study, preferred.

Job-related Experience:

  • Typically 8+ years related work experience in driving cybersecurity, privacy, and risk management programs in medium to large enterprise organizations.
  • 6 – 8 years of related experience in the Medical Diagnostic Industry preferred.
  • Healthcare software experience preferred
  • Experience with clinical workflow solutions or in a clinical environment a plus.

Other Qualifications:

  • Leadership skills in managing multidisciplinary teams in a global, matrix environment
  • Effective at developing and building effective teams.
  • Effective change management skills.
  • Ability to resolve conflicts and adapt to change
  • Effective at driving results
The client is a prominent biotech company located in Santa Clara, CA. This is a full-time position with competitive compensation and excellent benefits. Due to the Covid-19 pandemic, this position will start of full-time off-site but is expected to eventually transition to be onsite in their Santa Clara location. 


Mark Dinan 
(650) 328-2790 
Dinan & Associates

Thursday, May 14, 2020

Oracle Data Integrator Consultant

Oracle Data Integrator Consultant
Location: Lansing, MI

         More than 7 years of IT experience and at least 4 years hands on experience in Oracle Data Integrator
·         Should have worked in at least on Oracle IaaS environment with ODI environment in IaaS
·         Should be able to design, develop, customize, deploy and support after go-live for ODI
Should have expertise in performing application development, configuration and unit testing of data integration (using ODI, PL/SQL, SQL),
·         Should have worked closely with business stakeholders and database administrators to plan, design, develop and implement applications, scripts, procedures and metadata for relational databases.
·         Should have experience in performing analysis, design, development, testing and performance improvements of complex queries based upon the specific needs of the customer
·         Should have experience in troubleshooting, debugging, optimizing and performance tuning of data warehouse and ETL(ODI) scripts.
·         Should have experience in developing and maintaining documentation for ongoing operational activities
·         Should be able to perform thorough ETL testing, debugging & troubleshooting ETL mappings to resolve issues
·         Should be able to proactively work through service requests with Oracle support as needed
 
Soni Saraswat
Talent Acquisition Specialist
3 Ethel Road, Suite#302 | Edison, NJ - 08817
Office: 848-209-8327/ Textnow: 408-478-4440 | Fax: 732-626-6289

Wednesday, May 13, 2020

Incident Response Engineer

Incident Response Engineer

Location – San Jose,CA


Role Overview:

Roles & Responsibilities

Must demonstrate expert knowledge in Incident Response and one or more of the following areas:

 

Threat Hunting, Digital Forensics, Monitoring and Detection, Cyber Intelligence Analysis, Data Loss Prevention

 

 

Core Job Functions Include:

 

Investigations -Investigating computer and information security incidents to determine extent of compromise to information and automated information systems, must be familiar with notable event triage, Host Forensics, Network Analysis.

Escalations- Responding to escalated notable events from security tooling to develop/execute security controls, Defense/countermeasures to prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems.

Research - Researching attempted or successful efforts to compromise systems security and designs countermeasures.Stay educated on latest trends, techniques, tactics and procedures.

Communications -Provides information and updates to shift leads, creates pass-downs for the next shift, works closely with supporting teams, provides feedback for new security policy and standards, and engages with other teams.

Digital Forensics- As it relates to information systems, performs HR investigations and legal holds in a forensically sound manner. Consults with HR and legal subject matter experts to adhere to local country laws.

Coverage -Must be willing and able to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off and rotations across Day, Swing, and Graveyard shifts as needed.To be successful in this position, you should be proficient with:Incident Response – Getting people to do the right thing in the middle of an investigation.

Offensive Techniques - Penetration testing, IOCs, and exploits at all layers of the stack. Need to be very familiar with real world scenarios and current attacker behavior.Logs - you should be very comfortable with a SEIM to be able to gather and analyze logs to recreate incidents and hunt for threats. Should have experience developing and tuning detection logic.

System Forensics -Understanding of image acquisition techniques, memory forensics, host forensics.

 Networking Fundamentals -TCP/IP Protocols and associated analysis tools eg. Wireshark/TCPDump.

Scripting -Should be familiar in scripting in at least one of the following: BASH, Python, Perl or a similar language.

Risk Analysis -Taking an event in a particular environment and understanding the practical associated risk is a critical part of our jobs.

Automation -Creating and/or modifying scripts to automate repetitive and mundane tasks, freeing up time to focus on advanced investigations and other projects.

Enterprise Security-Should be familiar with enterprise security issues, working at scale.

 

Preferred Qualifications

Minimum Qualifications

Minimum five (5) years of professional experience in incident detection and response, malware analysis, digital forensics.


Ashok Chahar
IDC Technologies,Inc
Work:551-800-1655
Email: ashok.chahar@idctechnologies.com

Monday, May 11, 2020

Security/Privacy Engineer

Security/Privacy Engineer

Menlo Park, CA / Seattle, WA (Till Covid-19 remote)

Full time

Immediate interview

                

Job Description –

·         4+ years of work experience in software engineering, privacy engineering or security engineering.

·         Code maintenance and review experience in one or more general purpose languages.

·         Enthusiasm for the constant fight to ensure security and privacy on the internet.

·         Experience building relationships and influencing stakeholders across multiple disciplines.

·         Experience communicating highly technical concepts to non-technical audience.

Well versed in Android / iOS and programming languages (C , C++ Java , PHP)

 

Shankar Seth

Cell - (508) 418-8218