Information Security Expert

We invite you to be part of a growing organization and contribute actively to its success story. Work with a driven and passionate bunch of folks, who are reimagining possibilities, every day at ThoughtFocus.**To be successful you will need**:

- Influence roadmaps, service designs, internal cloud security standards, and customer-facing products for Paya’s global cloud infrastructure
- Represent product security to internal development teams and senior leadership
- Function as a de facto expert for product security decisions across Paya’s cloud platform
- Pull apart Cloud Services down to the nuts & bolts to understand how they work, how they can work better, and how they should be leveraged or extended to meet business and security goals
- Work on a combination of 3-10 big projects a year or 5-20 small projects a year
- Know when you should spend your time “hands on keyboard” vs. white-boarding solution
- Collaborate with your teammates to collectively support security initiatives across services and developers in their mission to continuously “level up” security of service families and the cloud platform
- Collaborate with IT team’s architects to lend your security expertise to product design conversations and implementation decisions
- Develop designs for how Paya will meet future security goals, support development of organization-wide plans for making it happen, and embed with teams as necessary to validate we’re doing the right things.
- Periodically embed with IT teams to provide technical direction, answer questions, and guide teams to enable meeting security goals
- A leader for cross-functional teams to solve complex problems
- Lead security incident response to address and remediate security incidents quickly
- Develop strategies, continually improve, and coordinate security incident response procedures including preparation, detection, containment, eradication, and recovery including root cause analysis.
- Meet compliance requirements such as PCI DSS, HIPAA, SOX and PII.

**Skills**:

- Experience coordinating across teams and developing internal and external communications.
- Good understanding of the current revisions of NIST or ISO and other related security frameworks and specific NIST incident response procedures.
- Experience working and collaborating with auditors or regulators.
- Proven experience building successful working relationships with internal and external personnel in various departments.
- Proficient in analyzing threat models, penetration test results, and vulnerability assessment reports.
- Experience with communicating and summarizing incident details to business leaders.
- Excellent written and verbal communication skills.
- Proven ability to facilitate meetings to accomplish goals and objectives in a collaborative environment.
- Proven ability to develop and analyze procedural documents and associated artifacts.
- Can understand and communicate how objectives fit into broader organizational goals, prioritize tasks, and develop timelines and schedules
- Exhibit excellent verbal and written communication skills including the ability to describe or explain complex processes and issues in a concise manner.
- Preferred Skills:

- Experience leading risk assessments and remediations of compliance open items.
- Have interest in cybersecurity, in addition to IT compliance
- Pursuing or have one or more active, industry recognized, and relevant cybersecurity certifications (including, but not limited to CISSP, CEH, CISM, GIAC, GCIH)

**Additional information**:
**Education**:

- Bachelor in BE**Who We Are**:

- ThoughtFocus helps forward-looking companies and organizations in financial services (capital markets, payments/loyalty, and mortgage/lending), manufacturing, and higher education/public sector innovate and achieve a better future faster. ThoughtFocus’ innovative and cutting-edge technology solutions enable its customers to deploy new capabilities faster, deliver better user experiences, and drive operating efficiencies. We do this through executional excellence and mitigating the risk of change. With headquarters in the U.S., the Company has more than 2,100 employees in locations spread across 5 countries.**Life at ThoughtFocus**:

- ThoughtFocus team, you will be challenged every day to deliver innovative business solutions, elegant technology, and sophisticated business services focused on our cWe are a global company that brings together skilled professionals from many diverse industries and experiences. Within a broad framework of teamwork, knowledge sharing, and collaboration, we encourage associates to achieve and excel in ways they never have imagined for themselves.- Building impactful solutions for complicated business problems requires great people. ThoughtFocus is a firm built on the talent of its people. We work hard every day to nurture and expand the capabilities of our team members. As a member of the lients' end goals.- ThoughtFocus offers