GENERAL SUMMARY:
Responsible for driving process improvements, maturity and consistency in key IT service delivery areas like change management, operations, incident and service management, and security; instills a culture of process compliance. Analyze IT Risk and Controls testing and validation activities in support of Internal and External Audit. Responsible for defining IT compliance requirements set by the business, internal and external audit. Works with the application team and external vendors to ensure service levels are met for network, application and database security. Provides oversight to organization ensure IT standards are enforced and are in compliance with DART policies. Helps define all action items relating to audit and compliance. Seek ways to reduce costs and increase efficiencies. Work with IT process owners to ensure IT processes and key data systems support control objectives and address audit findings/risk areas.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

1. Determines threats, identifies risks and vulnerabilities to the organization, researches security breaches and recommends corrective actions.
2. Analyzes the development and implementation of information security policy, standards, guidelines and procedures to ensure ongoing maintenance of security and define any changes that are required.
3. Enhances existing information security policy and facilitates the training for all associates identified in the policy as well as provides guidance to DART staff.
4. Works with technology team to ensures the protection of Information systems and data as well as compliance with contractual and legislative mandates through these policies and standards.
5. Develops and participates in information security awareness program to include presentations, publications, and other communications.
6. Define requirements to create IT controls policies, procedures and documentation and review, update and publish on a quarterly basis.
7. Performs other duties as assigned.

MINIMUM KNOWLEDGE, SKILLS, AND ABILITIES REQUIRED:
Note: An equivalent combination of related education and experience may be substituted for the below stated minimums excluding High School Diploma, GED, Licenses, or Certifications.

1. Bachelors degree from an accredited college or university in Computer Science, Information Systems, or related field.
2. Four years 4+ years of experience in IT security field plus three 3+ years of experience in complex IT development environments.
3. A collaborative style with the ability to build partnerships both internally and externally.
4. Well rounded understanding of technology, operations and business processes.
5. Ability to be dedicated to meeting the expectations and requirements of internal and external customers. Gets first-hand customer information and uses it for improvements in products and services. Acts with customers in mind. Establishes and maintains effective relationships with customers and gains their trust and respect.
6. Ability to make good decisions (without considering how much time it takes) based upon a mixture of analysis, wisdom, experience, and judgment). Most of his/her solutions and suggestions turn out to be correct and accurate when judged over time. Sought out by others for advice and solutions.
7. Ability to pick up on technical issues and knowledge quickly. Can quickly learn new skills and knowledge. Is good at learning new industry, company, product, or technical knowledge. Performs well in technical courses and seminars.
8. Ability to write clearly and succinctly in a variety of communication settings and styles. Conveys messages that have the desired effect.
9. Ability to quickly find common ground and solve problems for the good of all. Can represent his/her own interests and yet be fair to other groups. Can solve problems with peers with a minimum of noise. Is seen as a team player and is cooperative. Easily gains trust and support of peers. Encourages collaboration. Can be candid with peers.
10. Ability to use rigorous logic and methods to solve difficult problems with effective solutions. Uncovers hidden problems. Conducts excellent analysis. Looks beyond the initial answer and seeks multiple solutions.

WORKING CONDITIONS:
Works in an environment where there is minimum exposure to dust, noise, or temperature. May be moderately exposed to unpleasant working conditions to include dust, noise, temperature, weather, petroleum products, and chemicals while visiting DART's operating facilities, assuming incumbent is observing all policies and procedures, safety precautions and regulations, and using all protective clothing and devices provided.

Note: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. The statements are not intended to be an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may perform other duties as assigned.

DART is proud to be an Equal Employment Opportunity Employer, supporting diversity in the workplace. M/F/D/V