Security Job Listings

If you’ve registered with us previously, please login now. If you’d like to register, please click the ‘Register’ link below.: : Register | Forgot your password?

Related Categories

Security
Title Director, Security Operations & Advisory
Categories Security
Salary Unkown
Location Bellevue, WA
Job Information

Director, Security Operations & Advisory Expedia- Bellevue, WA (Greater Seattle Area)

Job Description

This role will oversee the Information Security Operations and Advisory teams. The Director of Security Operations and Advisory serves as the process owner for all ongoing activities that function to provide appropriate access to and protect the confidentiality and integrity of customer, employee, and business information in compliance with organization policies and standards. The Security Operations team provides a suite of operationally focused services to internal customers, allowing them to remain vigilant to the state of security and compliance within their environments. Including ongoing monitoring of centralized information management systems; Investigation and response to identified incidents; Vulnerability release monitoring and tracking; and Administration of global vulnerability management systems. Security Operations provides the necessary monitoring and analysis to protect information stored on Expedia, Inc. infrastructure from unauthorized access, disclosure, misuse, modification, or destruction as well as the management and maintenance of appropriate safeguards. The Security Advisory team members are tasked with performing a wide range of consulting services for the organization and must understand the environment from a business as well as technical perspective. Many of these services are mandatory to ensure that risks are assessed, mitigated or accepted prior to deployment. Specific areas of consulting services include: Architecture Planning, Development, and Review; Security Assessments and Threat Modeling; Security and Compliance Subject Matter Expertise; Application Assurance for Secure Development Lifecycle; and Risk Analysis. Responsibilities: – Oversee the management of resources on Security Operations and Assurance teams. -Improve the Security Operations and Advisory programs as new technologies, regulations and risks are identified. -Responsible for the development of the Information Security Operations and Advisory Strategy. -Responsible for obtaining input from Business Segments through Information Security Advisors regarding Information Security policies and guidelines, strategic goals, risks and risk tolerance thresholds. -Gather data and metrics on Information Security program compliance from the Business Segments. -Provide guidance and clarification on IS policies, guidelines and standards to the IS Advisors or Business Segments as needed. -Assume project management responsibilities as needed to implement initiatives -Responsible for planning and directing Operations and Advisory policies, programs and initiatives. -Develop and track operational metrics for the Operations and Advisory functions. -Relies on extensive experience and judgment to plan and accomplish goals. -Fosters teamwork and shows commitment to team objectives. -Encourages others to express their views. -Acknowledges others efforts. -Projects a positive image and serves as a role model for others. -Promotes collaboration and removes obstacles. -Develops Talent – Clear honest and constructive feedback. -Willingly shares expertise and experience with others. -Provides challenging assignments. -Manages Execution – Conveys clear expectations. -Know how to get things done in a complex, multilevel organization. -Balances big-picture with day to day activities. -A wide degree of creativity and latitude is expected. -Reports to Chief Information Security Officer. Qualifications: -Possess strong background in security operations and technology design and architecture. -Experience working with current and emerging information security technologies and development methodologies. -Provide metrics on information security operations and advisory matters to stake holders. -Must be a highly effective leader, visionary, and implementer in a decentralized, consensus-based, heterogeneous environment. -Minimum five years experience in developing and implementing high-level, multi-year, organization-wide information security strategies. -Quick thinking and be able to maintain composure under stress. -Demonstrated experience in advising and influencing senior management. -Must have excellent analytical skills and be able to break down complex, multi-faceted problems into actionable steps without over-simplification. -Commitment to root-cause analysis. -Must be able to communicate security-related concepts to a broad range of technical and non-technical staff in an intelligent, articulate, and persuasive manner. Work Experience and Education Guidelines: -10-12 years of experience in IT, with a minimum of 4 years in Infrastructure and Operations Security and Architecture. -Must have a strong track record in selecting compliance and operations solutions. -Demonstrated track record in large scale IT security operations governance, planning and monitoring -This senior position requires a comprehensive knowledge of the information security technology options, security standards, understanding of -Expedia’s brands and experience working effectively with all levels of the organization. -Strong technical, facilitative and collaboration skills, organizational and time management skills, communication (verbal and written) and interpersonal skills. -Must have an in-depth understanding of network security issues, security event logging / monitoring, operating systems (Windows, Unix, Macs), Firewalls, Intrusion prevention, AV technologies, authentication mechanisms, ethical hacking tools, vulnerability assessment & scanning tools, application security assessments, incident response and knowledge of common information security management frameworks. -Comprehensive knowledge of problem analysis and excellent troubleshooting techniques -Professional security certifications such as CISSP, CISM are preferred. -Experience working with proprietary software. -Experience working with software developers. -Experience with PCI, SOX compliance. -Experience with application design reviews and threat modeling.

Company Description

Expedia, Inc. is the largest online travel company in the world, with an extensive brand portfolio that includes more than 90 localized Expedia.com®- and Hotels.com®-branded sites; leading U.S. discount travel site Hotwire®; leading agency hotel company Venere.com™; Egencia™, the world’s fifth largest corporate travel management company; the world’s largest travel community TripAdvisor® Media Network; destination activities provider ExpediaLocalExpert®; luxury travel specialist Classic Vacations®; and China’s second largest booking site eLong™. The company delivers consumers value in leisure and business travel, drives incremental demand and direct bookings to travel suppliers, and provides advertisers vast opportunity to reach the most valuable audience of in-market travel consumers anywhere through TripAdvisor Media Network and Expedia Media Solutions. Expedia also powers bookings for some of the world’s leading airlines and hotels, top consumer brands, high traffic websites, and thousands of active affiliates through Expedia® Affiliate Network. (NASDAQ: EXPE)

Our mission is to build the world’s largest and most intelligent travel marketplace, connecting more travelers with the best travel booking services and destination information, and delivering value to travel suppliers and other companies that want to reach this unmatched audience.

Collectively, the Expedia, Inc. brands cover virtually every aspect of researching, planning, and booking travel, from choosing the best airplane seat, to reading personal travel reviews of hotels, to planning what to do in a destination once you arrive. The Expedia, Inc. portfolio serves both leisure and business travelers with tastes and budgets ranging from modest to luxury. Expedia is the single largest provider of hotel bookings in the world, delivering consumer travel demand from nearly every continent to more than 130,000 hotels and hundreds of airlines, tour operators, car rental companies and destination services supply partners.

Additional Information

Posted:
April 26, 2011
Type:
Full-time
Experience:
Director
Functions:
Information Technology, Management
Industries:
Computer Software, Internet
Employer Job ID:
14941
Job ID:
1575264
Apply Now


Title Regional Security Manager, Critical Infrastructure
Categories Security
Salary Unknown
Location Redmond
Job Information

The Regional Security Manager must be an experienced leader and team player with strong communication and collaboration skills and the ability to effectively lead and manage people.  Ability to deliver excellent physical security operations across geographic and organizational boundaries.

ESSENTIAL FUNCTIONS

  • Lead a team of Site Security Managers to operate security systems, manage projects, and support regulatory, industry and contractual audits including but not limited to ISO 27001, SAS 70, FISMA , PCI and Common Criteria while maintaining compliance with industry best practices and state of the art design guidelines utilized by Microsoft’s Global Foundation Services (GFS) Physical Security program.
  • Provide security management and detailed security status reports to Microsoft management and key stakeholders. Communicate issues and recommendations for resolution to Microsoft management in a timely manner.
  • Develop, manage, and maintain security related processes, procedures, training, and improvement plans.
  • Document and improve work processes in order to make workflow more efficient and productive.
  • Collaborate across groups such as Data Center Operations and Development, Security Consulting, Global Security Operations Center (GSOC) and other Security groups to overcome challenges and deliver results.
  • Work with all sites in creating security models that enable teams to maintain a high level of accountability and consistency.
  • Coordination with local, state and federal law enforcement agencies.
  • Perform task and duties of a similar nature and scope as required.
  • Associates are held accountable for successful job performance. Job performance standards may be documented separately, and may include functions, objectives, duties or tasks not specifically listed herein.
  • The functions listed describe the business purpose of this job or position. Specific duties or tasks may vary and be documented separately. An associate might or might not be required to perform all functions listed. Additional duties may be assigned, and functions may be modified, according to business necessity.
    All assigned duties or tasks are deemed to be part of the essential functions, unless such duties or tasks are unrelated to the functions listed, in which case they are deemed to be other (non-essential) functions.
    In performing functions, duties or tasks, associates are required to know and follow safe work practices, and to be aware of company policies and procedures related to job safety, including safety rules and regulations. Associates are required to notify superiors upon becoming aware of unsafe working conditions.
    All functions, duties or tasks are to be carried out in an honest, ethical and professional manner, and to be performed in conformance with applicable company policies and procedures. In the event of uncertainty or lack of knowledge of company policies and procedures, associates are required to request clarification or explanations from superiors or authorized company representatives.
    May be exposed to or required to handle sensitive and confidential information and must demonstrate the ability to maintain utmost confidentiality and privacy. 
     Requirements
    MINIMUM QUALIFICATIONS AT ENTRY

Education/Experience.  Bachelor’s degree (Business / Management/ or related field) and/or five years of experience in a corporate security, military or law enforcement position.  The candidate will also need to have five years of well documented managerial experience in one or more of the following areas: security operations, service planning, service development or related operational field, or an equivalent combination of education and experience sufficient to perform the essential functions of the job, as determined by the company, or any combination of above. Educational exceptions may be considered based on professional experience. Professional certifications preferred (CPP, PSP, etc.) Experience with responding to Security related audits a plus.  

Competencies (as demonstrated through experience, training, and/or testing):

  • Ability to lead a team in analytical planning, critical review, and problem solving.
  • Excellent oral and written communication skills required for preparing clear, concise and grammatically correct materials and communicating information effectively to others.
  • Expert Security Management skills.
  • Ability to maintain professional composure when dealing with unusual and stressful circumstances.
  • Strong customer service and service delivery orientation.
  • Ability to interact effectively at various social levels and across diverse cultures.
  • Action oriented with a passion for getting things done quickly, efficiently, and properly
  • Strong cross-group collaboration and relationship management skills including directing & coordinating virtual teams to achieve deliverables.
  • Strong computer skills.  Must be proficient and familiar in the use of the Microsoft products.
  • Professional demeanor and excellent ability to contribute independently in security operations.
  • Understanding of security operations, Security Operations Center (SOC) Operations and procedures. 
  • Working Conditions and Physical/Mental Demands

With or without reasonable accommodation, a candidate must have the physical and mental capacity to effectively perform all essential functions described. In addition to other demands, the demands of the job include:

  • Successful passage of background and reference checks, job related and controlled substance tests, in addition to any mandatory licensing requirements.
  • Seeing, hearing, speaking, and writing clearly in order to communicate with employees and clients, observe and report incidents, and direct others.
  • Close vision, distance vision, and ability to adjust focus.
  • May be required to use a vehicle for the performance of duties.
  • May be required to work in an active construction environment.
  • Must be available for frequent and occasional limited notice international and domestic travel approximately 25% of the time.
  • Required to work long hours without advance notice or significant breaks as needed.
  • Required to be available 24/7 for security related emergency situations.
  • Required adjusting schedule regularly and working hours necessary to meet operational needs.
  • Required ability to handle multiple tasks concurrently. \Keyboarding, basic computer usage and operating controls.
  • Frequent sitting, standing and walking, which may be required for long periods of time, and may involve climbing multiple floors of stairs; walking up inclines and on uneven terrain.
  • Occasional reaching with hands and arms, stooping, kneeling, crouching and crawling.
  • Frequent lifting and/or moving up to 10 pounds and occasional lifting and/or moving up to 25 pounds.
  • Depending upon assignment may be exposed to inclement weather or be required to work in environments or under conditions that require the use of protective gear and devices and/or awareness of personal safety and safety of others.
Apply Now


Title Investigations Specialist
Categories Security
Salary Unknown
Job Information

Investigations Specialist

Amazon is seeking dedicated, hardworking, analytical candidates with a proven track record of performance and results-oriented thinking, to join the Buyer Risk Investigations team.  Candidates will be responsible for a wide range of duties related to the investigation and elimination of online e-commerce fraud.  Ideal applicants will have experience in the eCommerce payments space, previous fraud experience, and experience succeeding in a customer-driven workplace.

This position is based in Seattle, but requires near native fluency in Spanish, as well as the ability to communicate effectively in English.

Job Responsibilities:

  • Investigate transactions and make decisions regarding their validity based on available internal and 3rd party data;
  • Use a combination of manual and automated tools to obtain information;
  • Communicate via email and telephone with external and internal customers to make informed decisions about risk;
  • Ability to analyze multiple data points to quickly and accurately gauge risk;
  • Assist in the formulation of group modus operandi;
  • Assist in the development and streamlining of complex fraud models, providing input based on relevant empirical information;
  • Contribute or lead other special projects which reduce fraud related losses while maintaining focus on positive customer experience;
  • Maintain the confidentiality of all information obtained during the investigations process;
  • Assist in the development of new tools for use in fraud prevention;
  • An ability to identify, communicate, and champion process improvement opportunities that will benefit internal and external customers;
  • Recognize system bugs, tool outages and other workflow issues and report these promptly and clearly;
  • Maintain individual accountability for performance metrics, ensuring ever-increasing levels of productivity and accuracy against established benchmarks

Basic Qualifications
Demonstrated ability to exceed expectations with regard to performance and individual contribution
Demonstrated analytical and problem solving skills, including the ability to recognize non-obvious patterns
Demonstrated communication skills, both written and verbal
Demonstrated positive, results oriented attitude
Demonstrated passion for customer service
Ability to effectively manage time, and individually prioritize multiple tasks of competing priority
Ability to maintain high levels of confidentiality and data security standards
Experience with Microsoft Office, including Outlook, Word, and Excel
Ability and willingness to work on weekends, and outside of the “standard” work day

Preferred Qualifications
Bachelor’s Degree
Experience in eCommerce Fraud Operations
Apply Now


Jobs 1-3 of 3