Description
General Summary:
This position is responsible for providing technical leadership and accountability for the security strategy and architecture development/design and implementation for the Voxeo Production Environment
Responsibilities include leading the initiatives and programs that ensure continuous improvement of the security of Voxeo’s Production Environment. This position acts as the security expert and provides technical guidance and training to other personnel. This position enhances security in Voxeo’s Production environment by recommending, developing and delivering processes, practices, tools and metrics that support a secure environment.
This position is also responsible for providing leadership in analyzing security breaches and potential breaches, determining root cause and making recommendations for security improvements to the Voxeo Production Environment.
This position is responsible for insuring Voxeo maintains its PCI compliance and SAS70 compliance status. It is also responsible for the company’s Business Continuity Planning (BCP) and testing efforts.
This position requires a high degree of technical expertise and knowledge in the following areas: IP Networking, Windows 2003 OS for servers and Linux (CentOS)
Principal Duties and Responsibilities:
Identify gaps in production network architecture, tools, processes, policies and/or practices that cause a risk to the security of Voxeo’s Production Environment. Develop, recommend and deploy solutions to address the gaps identified.
Lead Voxeo's ongoing PCI compliance program. Identify gaps that need to be remediated and leads the cross functional teams necessary to close those gaps
Lead Voxeo's ongoing SAS70 compliance program. Identifies gaps that need to be remediated and leads the cross functional teams necessary to close those gaps
Lead the ongoing planning, implementation and testing of Voxeo’s Business Continuity Plan insuring the required continuity of services for Voxeo’s Production Environment.
Notes potential security vulnerability trends and chronic issues and defines actions necessary to address them so as to prevent security breaches from occurring.
Maintains knowledge of state-of-the-art security tools, practices and technologies in support of the Voxeo Production Environment
Analyzes reports and key Production Environment security indicators to identify exception conditions. Takes corrective action to resolve issues as identified.
Drives continuous improvement by leading efforts to improve the existing Production Environment security architecture, monitoring tools and alarming capability and recommends changes to enhance the Production Environment security.
Utilizes industry best practices and standards as guidelines for developing policies and procedures to enhance the Production Environment security.
Provides technical expertise and consulting to internal and external customers as necessary
Works closely with the Director – IP Network Architecture to insure a secure IP network environment
Provides assistance and consulting to other groups in Voxeo in support of improving Customer Loyalty
Job Requirements:
Required Technical Skills:
CISSP certification with emphasis on the following domains:
Access Control
Business Continuity & Disaster Planning
Telecommunications and Network Security
Security Architect and Design
Information Security Governance and Risk Management
Bachelor’s degree in Information Security, Information technology or related field or equivalent work experience
Extensive experience working in security in an IT/telecommunications environment
Extensive experience with Cisco equipment for switching and routing in a production environment
Strong knowledge of Linux and Windows OS
Working knowledge of Rapid 7 and Alerta scanning vulnerability reports
Knowledge of information security relevant legal and regulatory requirements
Knowledge of VoIP/SIP Security
Strong knowledge of PCI, SOX, HIPPA, ISO, SAS 70
Required experience:
4 or more years experience performing security risk assessments of networks and data center operations.
4 or more years analyzing compliance to industry best practices for security policies and standards, documenting security weaknesses and developing recommendations for and implementing remediation plans
Strong analytical and problem solving skills
Strong oral and written communication skills
Strong control and follow-up skills
Strong leadership skills
Solid decision making skills
Strong conflict resolutions skills
Desired Skills:
CISM certification
The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. It is not designed to be utilized as a comprehensive list of all duties, responsibilities, and qualifications required of employees assigned to this job.
Requirements
Company Background
Voxeo’s mission is to make it easy for anyone to create and deploy voice applications that can run on any home, mobile, office, or VoIP phone. Leading analyst firm Gartner says Voxeo is part of a select group of companies that “will have a business impact on the future of IT". Voxeo is a profitable, pre-IPO, international, employee-owned, Internet software company. Our technology is at the cutting edge of Voice over IP (VoIP) and web 2.0 applications, standards, and mashups.
We want to revolutionize the telephone industry and are doing so every day. We run the world’s largest voice application developer community (over 30,000 members to date) and have hundreds of enterprise customers in fields including telecom, consumer services, healthcare, retail, government, and more.
At Voxeo we focus on building a team of incredible people and making our customers extremely happy. We work hard, but we believe in balance. We have numerous perks and benefits, including the best health insurance in Florida, incentive stock options, free snacks and drinks, catered lunch on Fridays, and poker and movie nights.
Voxeo employees work in our 100% cubicle-free open-environment office on the 20th floor of The Plaza – downtown Orlando’s newest office building. Our culture is just as open as our office. Voxeo employees are encouraged to ask for help from and offer help to anyone at any time. Our culture comes from our roots in Silicon Valley, where many of us helped start and build companies including Netscape, Yahoo!, TellMe, and OpenWave.
Voxeo is built on a spirit of entrepreneurship. Many of our employees have previously founded other successful tech companies, and you will work directly with Voxeo’s co-founders on a daily basis.
Benefits:
100% company-paid health, vision, dental, short-term and long term disability, and life insurance
Incentive Stock Options and bonus plan
New MacBook Pro notebook. No old Dell-hand-me-downs here.
New Apple iPhone
Three minute walk to popular downtown restaurants and bars
Free parking at our downtown Orlando office
Challenging work and significant career growth at Orlando’s fastest growing tech company
The opportunity to revolutionize how people use and create applications for any phone
Free education and certification in highly desired technologies such as VoIP and VoiceXML
Work directly with top experts in SIP VoIP technology and W3C web standards
You can learn more about Voxeo by checking out:
Our corporate site – www.voxeo.com
Our developer site – evolution.voxeo.com
Our Flickr page – www.flickr.com/photos/voxeo
We asked all of our employees what they thought we should mention in our job postings.
Here’s some of what they had to say:
“This company would be a hot commodity in Silicon Valley, but having an opportunity to work for a company like this in Orlando is rare and a huge thing for folks who don't want to have to move out of state."
“I applied for a job here, but definitely got more than I bargained for, I found a place I can call home."
“The item that really hooked me in my job interview is the health benefits. That's a huge difference in Voxeo compared to other firms."
“One of the great points about working at Voxeo is the opportunity to work and learn directly with the company's top engineers and executives."
“Corporate culture is one of the perks that has kept us from being a ‘turn and burn’ company … a large factor in our hiring process is a good culture fit, we would be remiss if we didn't stress the fact that we are looking for cool people to work with."
“I think you should say that Voxeo provides all of the tools that allow you to perform the challenging work, including telephone, laptop and the software you need to excel at any position."
“To a lot of people in IT right now, the ‘MacBook Pro’ has become the ‘hot’ laptop to have and most people will never dream of getting one because they are stuck in a space where all they will ever see are Dell laptops of various vintages."
“The great thing here is the opportunity to learn. The chance to increase your skill set exponentially in a cutting edge field and to feel truly needed and satisfied at the end of the day. Hard to quantify that sort of job experience but it is invaluable."
“I think a key point that we are trying to capture is that everyone at Voxeo works hard but we love what are working on. I think if there is some way to put down that the entire company loves what they are doing and you don’t have dead wood around is a nice thing."
“Speaking as a relative Voxeonoob, the office was a definite selling point in coming here. The view and top-floor-prestige aside, you can't understate the importance of clean bathrooms."
“We definitely have a fun and fabulous group of people."
“Everyone that works here has such a great personality and makes you feel right at home. The employees at Voxeo are accountable and extremely intellectual individuals, but they also know how to enjoy the day and laugh at the lighter side of things."
“I think the 'can do' culture should be in there, every employee is empowered to help the customer and to create a better solution."
“The fact that the company and some of the people are Silicon Valley transplants has a certain appeal. We should consider mentioning that."
“For me, the best part about working at Voxeo is our team family, and the culture of voxeo. We are intensely technical, and we work very hard, and we don't take it all too seriously."
“I think Voxeo is a rarity for the Florida market. Opportunities to work with a successful, high-tech, industry-leading company are few and far between in this area."
“One of the most attractive benefits for many people is our 100% company paid health insurance. That benefit alone can be the deal breaker for a potential employee. I would put that at the top of the benefits list."
“One of the best things about being a Voxeon is that you have access to the highest level of management in an open and laid back setting. Often times people care more about who they work worth and enjoying coming to work each day then pay, benefits, etc."
“I like the ‘Teach a man to fish’ reference. I would find a way to emphasize that management is just as involved in the technology as the employees are."
“I think the all-hands and quarterly financial meetings are something that not all companies offer, and are seen as a benefit to many as they expose the insides of the company, show that Voxeo is very open about the state of the company, and allow the employees to participate in discussions that affect the company on the whole. “
“The fact that you (the CEO) are asking us (the employees) for input on this job posting should somehow be conveyed in there as well. And it's not just the job posting, you send out things like this all of the time, showing how much you value all of our input."
