• Director of Informational Security

    Posted Date 2 weeks ago(6/4/2018 5:05 PM)
    # of Openings
    Job Locations
    US-PA-Bala Cynwyd
    Information Technology
  • Overview

    Company Profile:

    InvestEdge is a leading provider of innovative advisor solutions to financial institutions. Our integrated solutions provide a breadth of tools that simplify complicated wealth management processes and reduce overall operational risk. Using the integrated solutions automates key front office functions like easy-to-use portfolio management, trading/rebalancing, performance measurement, reporting, compliance/fiduciary monitoring, and data aggregation tools. Through MMxCHANGE, we provide a marketplace of investment products for wealth management firms.


    Position Summary

    Direct/Manage/Supervise information security management program to meet the strategic goals of the organization while complying with all applicable laws and standards.


    • Develop and implement business plans, policies and procedures to maintain systems, network, database and/or Web security.
    • Oversee the development, implementation, and maintenance of information security, including access management, vulnerability assessments, penetration testing, infrastructure, Vendor management, and regulatory compliance.
    • Manage reporting, investigation, and resolution of data security incidents.
    • Analyze business needs and oversee security architecture, administration, and policy planning to lessen possibility of security breach.
    • Develop and administer Information security policy for supplier relationships to include: Monitoring and review of supplier services and contracts,  new vendor reviews, risk profiles and assessments, and Managing changes to supplier services
    • Provide guidance and direction on best practices for the protection of information.
    • Ensure compliance with regulations and privacy laws.
    • May oversee internal or external systems security (e.g., cloud services). 
    • Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security.
    • Conduct vulnerability assessments and monitor systems, network, databases, and Web for potential system breaches.
    • Respond to alerts from information security tools. Report, investigate and resolve security incidents.
    • Educate and communicate security requirements and procedures to all users and new employees.
    • Recommend and implement changes to enhance systems security and prevent unauthorized access.
    • Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.



    • Knowledge of and ability to employ internal controls and to enhance business strategies for the purpose of detecting, correcting and preventing fraudulent activities.
    • Knowledge of and ability to manage the major responsibilities, accountabilities, and organization of the Audit and Compliance (A&C) function or department.
    • Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply this knowledge appropriately to diverse situations.
    • Knowledge in network architecture and security controls as well as current and emerging information security threats
    • Familiarity with compliance regulations and security frameworks (SOC, PCI, GDPR, GLBA, COBIT, FINRA, ISO, NIST,)
    • Experience with risk and threat assessment, control auditing, vulnerability analysis, information gathering, correlating and reporting
    • Strong organizational and problem-solving skills with attention to detail
    • Ensure compliance with regulations and privacy laws.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed