Senior Information Security Manager Job Listing at Intralinks in New York, NY (Job ID R22981-New York, NY)

Description

SS&C is a global provider of investment and financial services and software for the financial services and healthcare industries. Named to Fortune 1000 list as top U.S. company based on revenue, SS&C is headquartered in Windsor, Connecticut and has 20,000+ employees in over 90 offices in 35 countries. Some 18,000 financial services and healthcare organizations, from the world's largest institutions to local firms, manage and account for their investments using SS&C's products and services.

Job Description

Job Title: Senior Information Security Manager, Risk and Compliance

Location: Waltham, MA; New York, NY; Remote

Company: SS&C Intralinks

Join Us:

Join our team as the Senior Information Security Manager, Risk and Compliance, and play a pivotal role in safeguarding our SaaS solutions. This position offers the opportunity to lead, innovate, and directly affect our security culture. If you are motivated by the challenge of operational security and eager to make a significant contribution, we want to hear from you.

Summary of the Role:

A Senior Information Security Manager, Risk and Compliance is needed for the SS&C Intralinks team. The selected candidate will enhance security and compliance across cloud application deployment environments while preserving customer and regulatory obligations and following corporate standards. The role will entail leading cloud security initiatives, ensuring compliance, managing risk within SaaS and Technical Operations, and collaborating with Infrastructure, Product Development, Customer Success, Legal and Corporate Security teams. The successful applicant will create and review security policies, give feedback on cloud architectures, and ensure conformity with security and compliance obligations. Additionally, the selected candidate will act as a link between Intralinks Business Unit and Corporate Security & Compliance.

Responsibilities of the Role:

• Develop, implement, and maintain compliance and regulatory guidance and security and privacy assessments for cloud and traditional data center environments.
• Lead security initiatives and foster an approach to address security concerns across the Intralinks business unit while staying closely aligned with the Central Security Organization.
• Serve as a cloud security expert, advising stakeholders on compliance guidance and security protocols for cloud solutions.
• Implement security and privacy safeguards to protect non-public personal information and provide specialty knowledge inputs to sales, legal, and internal delivery teams.
• Conduct and evaluate vulnerability assessments and penetration tests, review and improve security policies, and manage risk policies.
• Support internal and external audits, regulatory exams, enterprise risk initiatives, and the regular audit examinations with a strong familiarity with NIST 800-53, FIPS, ISO27001 etc.
• Represent Intralinks in customer interactions, audits, and security discussions, contributing to security documentation and leading operational security reviews of new products and services.
• Represent the Intralinks Business Unit working with corporate security and compliance.
• Stay updated on changing regulatory environments, monitor and report on privacy and security legislation, and assess organizational impacts.
• Some domestic travel to corporate offices, data centers, and events may be required.
  
   

Qualifications:

The ideal candidate should have the following qualifications:

• 10+ years of operational security experience, with a focus on SaaS environments, and at least 2-5 years in security, risk management, compliance, and privacy.
• Expert knowledge in cloud architecture, DevSecOps, vulnerability management, and familiarity with regulatory frameworks such as SOC, ISO, and FedRAMP.
• Solid background in governance, risk, and compliance, and extensive experience with security frameworks and privacy principles.
• Proficiency in VMWARE, Kubernetes, AWS, Azure, Linux, Windows, and standard network protocols.
• Strong leadership, analytical, project management, and communication skills.
• Relevant security certifications (CISSP, CompTIA Security+, AWS/GCP) are preferred.
   

Competencies

• Excellent communication skills, both verbal and in writing
• Detail oriented with a bias for action.
• Excellent analytical and critical thinking skills.
• A team player who thrives in ambiguity.
• The ability to handle unexpected work with tight deadlines.
   

Unless explicitly requested or approached by SS&C Technologies, Inc. or any of its affiliated companies, the company will not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services. SS&C offers excellent benefits including health, dental, 401k plan, tuition and professional development reimbursement plan. SS&C Technologies is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race, color, religious creed, gender, age, marital status, sexual orientation, national origin, disability, veteran status or any other classification protected by applicable discrimination laws.

Salary is determined by various factors including, but not limited to, relevant work experience, job related knowledge, skills, abilities, business needs, and geographic regions. NY: Salary range for the position: 140000 USD to 165000 USD. California: Salary range for the position: 155000 USD to 165000 USD.

 Apply on company website