IT'S NOT JUST
A JOB.

To us it’s personal.

IT Manager, Data Security

Covance 3/12/2019 1:14:59 AM
JOB ID: 29166 Category: Information Technology
Burlington, North Carolina

   

 

Job Overview

LabCorp is seeking a Senior Data Security Analyst/Manager for its North Carolina location. The Senior Data Security Analyst/Manager will report to the Director of Informatics and Data Protection, within the Office of Information Security. This position will lead and implement enterprise strategy for data and application security, and will partner with various business and technical teams to ensure this strategy is carried out.

Responsibilities:

This position provides technical leadership in the areas of data and application security and the duties include, but not limited to:

* develop and implement enterprise strategy for securing company data throughout its lifecycle
* define and implement appropriate governance and security controls commensurate with data classification
* keep up with emerging global data protection and privacy regulations
* maintain/update LabCorp's security policies to comply with applicable regulations
* design and implement data centric security solutions for protecting data at rest, in motion and in use
* identify use cases and implement solutions for data loss prevention, data encryption, and test data management
* work closely with DBA teams in designing and implementing encryption and monitoring solutions
* work closely with Data Protection, Risk Management, Compliance, Legal, and Internal Audit teams to understand external compliance requirements and implement appropriate technical controls
* manage policies and implement solutions for secure software development lifecycle
* work closely with Development and Enterprise Architecture teams to integrate application security into the DevOps process
* develop and maintain data and application security standards and evangelize those to appropriate staff
* participate in security incident handling and investigations as required
* interact with and manage vendors, service providers, and contractors regarding security products and services
* manage and/or provide guidance to junior members of the team

Education/Qualifications

License/Certification/Education: Normally B.S. Degree required w/5-7 years of Experience

Experience

Minimum Required:

* minimum 3-5 years of Experience in information security in the areas of data and application security
* Experience working with relational databases and noSQL databases like MongoDB and Hadoop
* understanding of cryptography principles, key management and PKI
* working knowledge of common database security controls, including encryption, activity monitoring and data masking
* working knowledge of any database security and encryption solutions like Oracle TDE, Oracle Audit Vault, IBM Guardium, Imperva SecureSphere, etc.
* understanding of software development lifecycle and DevOps process
* proven Experience and success with data and application security design and implementation
* proven Experience with information security best practices
* proven project management and organizational skills -- specifically managing multiple concurrent projects
* strong interpersonal, written, and oral communication skills
* highly self-motivated and directed professional, with attention to detail
* excellent analytical, problem-solving and decision making abilities
* ability to work independently and effectively prioritize tasks in a high pressure environment
* Experience working in a team-oriented and collaborative environment

Preferred Skills:

* Bachelor's or Master's Degree in Information Systems, Computer Science or related discipline is highly desired
* CISSP or equivalent certification is highly desired (or obtain within 2 years of joining)
* understanding of cloud and mobile technologies is desired
* development or scripting knowledge is desired
* Experience in developing and managing security policies is desired
* understanding of industry standards and compliance requirements related to information security -- especially NIST 800-53, ISO 27001, HIPAA, and PCI DSS


Position Type: Full-Time

Location: Burlington, NC - North Carolina



APPLY TO THIS JOB DOWNLOAD PDF

Covance Recruiting Process

Below is a general Overview of Our Recruiting Process

If you’d like to work for us, please submit your resume/CV online. If your ability to use or access our electronic application is limited due to a disability, please visit www.gettinghired.com or call 1-800-978-4473 for help.

We consider applications from everyone who is interested in a position with us and who meets the required criteria and qualifications.

If your application is selected, someone from our recruiting team will contact you to arrange an initial screen. We may carry this out over the phone or at a face-to-face meeting. You must complete the screen to be considered for the position.

Based on the results of the initial screen, we may invite you to an interview. One of our recruiting team members will contact you to arrange this. The process may involve several interviews, initially over the phone, and then face-to-face with different members of the hiring team.

Our interviews follow a behavioral-based format. This means we’ll ask you to give us information that’s specific to your professional and educational experiences.

Hiring team members will share and discuss their input and then make their decision.

If you’re the person who best meets the requirements of the position, a member of the hiring team will get in touch to make you an offer of employment. Covance is an eVerify employer (United States only).