5+ years of experience
Concerned about your lack of experience? Learn More...
Employment Type:
Full time
Job Category:
Information Services
Data Security Specialist
(This job is no longer available)
iStaff | Pittsburgh, PA
Grad Date

Not sure what types of jobs you are interested in?

Explore Jobs
Based on Your Education

Follow This Company

Job Description

Job Summary:

The IT Data Security Specialist under the direction of the CSO will be responsible for data privacy compliance, risk management, security standards and best practices, security policies and procedures, assist in security audits and customer security reviews and questionnaires. The IT Data Security Specialist will also work with the Business Units to develop solutions that ensure security is built in to our products through the SDLC.

Essential Job Responsibilities:

1. Participate in security audits performed by external auditors to ensure compliance with ISO 27001:2013 information security certifications. Assist with the coordination of audits to ensure processes are being followed as stated and documented. Coordinate audit interviews/walkthrough. Assist with provision of documented evidence to auditors

2. Assist with preparing reports and presentations for management including security findings, recommendations, penetration and vulnerability analysis of various security technologies.

3. Execute and monitor security controls to ensure operational effectiveness. Plan, execute and run Data Protection Technology implementations. Ensure all security, quality and compliance requirements are met. Work closely with Development teams to implement Data Protection Technologies into products

4. Monitor and address production issues related to data protection tools. Monitor vulnerability scan results, report results to Network Team for remediation and monitor remediation.

5. Estimate and forecast Cloud usage costs and identify operational cost control mechanisms.

6. Assist in selecting the appropriate Cloud services to design and deploy products into Cloud based on compute, data or security requirements

7. Work with Development to audit and evaluate security controls to ensure they comply with risk management objectives, identify security control gaps, and create policies that will cover security concerns and not impact Development productivity.

8. Work with Development teams to define how encryption will be applied for all products.


5+ years of increasing responsibility in information technology services and support


Experience with documenting procedures

Understanding of all security issues including Threat Management, Penetration Testing and Risk Management

Ability to interact with external customers and staff members

Ability to work in a fast paced, constantly expanding environment Excellent written and verbal communication skills

Solid knowledge of information security principles and practices

Experience with software development and security architectures

Familiar with ISO 27001 ISMS

In-depth understanding of network, system, application and data security concepts for data center and cloud architectures.

Critical thinking skills - use logic and reasoning to identify the strengths and weaknesses of alternative solutions, conclusions or approaches to problems.

Knowledge of National Institute of Standards (NIST) IT Security, particularly the Special Publication 800 series.

Education: Bachelor's degree, preferably in Computer Science


Applicants must be eligible to work in the specified location