Enova company image
Enova
Hybrid
View Profile
Jobs//Hybrid//Developer + Engineer//

Sr. Manager of Information Security

Sorry, this job was removed at 3:20 a.m. (CST) on Thursday, April 13, 2017
View 933 Jobs
Find out who's hiring in Chicago.
See all Developer + Engineer jobs in Chicago
View 933 Jobs
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
 Senior Manager of Information Security

Reports to Chief Technology Officer

Senior Manager of Information Security Overview:

The Sr. Manager of Information Security will serve as the lead for all InfoSec policies and management of external auditors to ensure compliance with its private industry and state/ national regulations. This person should be able to achieve and execute strategy and take an “as is” picture and deliver a cutting edge assessment of what needs to be done. As a result, the Sr. Manager will need to possess a broad and deep range of technical and functional capabilities as it relates to InfoSec.

You will provide the “big picture” direction and roadmaps to where the function is going overall. The Sr. Manager will be responsible for establishing preventive controls, solutions and programs, including security and risk management reporting, metrics, and the overall enterprise security posture across the Company.

There is a need to create greater visibility on enterprise security related priorities, optimize and accelerate its vendor management programs, and other InfoSec policies across the organization. The Sr. Manager will also take charge of Enova’s policies around response to disasters and providing materials to executives and the Board of Directors on these initiatives.

Responsibilities:

SOX ITGCs

  • Working closely with Internal Audit, ensure that Enova’s IT General Controls are properly designed, focused in scope, and met without deficiencies.

3rd Party Vendor Reviews

  • The Information Security team is responsible for the IT risk assessment of all vendors who do business with Enova. This includes third-party data providers, marketing and prospecting services, and software used internally. Enova reviews more than 200 vendors annually so the review process must both protect information and be efficient to support the business. Your role will be to review the process and optimize it, as well as ensuring clear communication to stakeholders on status.

Infrastructure & Data Security

  • Enova has established strong perimeter defenses for its websites and externally-facing applications. The opportunity internally is around three things: awareness of threats and training; enhancing the security practices around software development; data-loss prevention programs for the callcenters.
  • -Wide Enterprise Security Risk Program
  • Formulate a cohesive risk management framework that can produce a Rapid Risk Assessment (RRA), on any project at any stage, to help level set the risks associated with any endeavor. Establish the ability to reproduce relatable vulnerabilities to risk and track vulnerability remediation and they can track threat actor actions against the enterprise.

Security and Compliance Audits and Certifications

  • The Sr. Manager will be responsible for directing and managing the security aspects of Enova’s PCI, EU Privacy, DR, and other assessments and certifications.

Establish and Publish Security KPIs

  • There is a need to establish enterprise security KPI’s and publish an organization-wide enterprise security risk management program for transparency and accountability and to create greater visibility on enterprise security related priorities, active efforts and backlogs.

Additional Responsibilities:

  • Partners with other leaders to identify acceptable levels of risk, and establish roles and responsibilities with regard to information classification and protection
  • Communicates and has visible presence across the organization by sharing information clearly, openly and effectively
  • Provide strategic security guidance for all projects and partnerships
  • Develop and manage an effective security monitoring and incident response processes and service
  • Liaise between the Infrastructure, Software Engineering, Legal and Compliance teams as required
  • Direct and manage the enterprise security risk assessment process, including reporting and oversight of remediation efforts to address negative findings
  • Develop business-relevant metrics to measure the efficiency and effectiveness of security programs, manage the appropriate resource allocation and continuously increase the maturity of the security programs

Qualifications:

  • Minimum of eight to ten years experience in a combination of technology-focused risk management, information/infrastructure security, application security and security positions
  • Excellent written and verbal communication skills; interpersonal and collaborative skills; and the ability to communicate security and risk-related concepts to technical and nontechnical audiences
  • Ability to influence opinion and direction through substantiated and qualified positions stemming from robust and diverse experience
  • Must thrive in a dynamic, fast-paced and fluid organization where priorities shift in response to changing business needs
  • Works energetically, highly engaged, transparent, decisive, and produces measurable and superior results
  • Flexibility and adaptability in approach, designing the right solution for the situation
  • Knowledge of best practice trends and developments in the areas of security and risk management
  • Maintains an executive temperament under pressure and stress and facing ambiguity
  • Degree in Computer Science, Information Management or other technology-related field, or equivalent work- or education-related experience
  • Professional certification, such as a CISSP, CISM, CISA or other information security credentials, is preferred
See More
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Jasmine Kent
Diversity, Equity and Inclusion Lead
INCLUSION DRIVES INNOVATION
Embrace individuality, fuel success
Kent said Enova takes a strategic approach when it comes to diversity. By focusing on gathering employee survey data, supporting a DEI council and creating inclusive hiring practices, the company aims to help everyone feel intrinsically valued, which ultimately drives business success. “If team members are free to be who they are, they’re empowered to come into work each day and share their unique gifts,” Kent said.
Kent said Enova takes a strategic approach when it comes to diversity. By focusing on gathering employee survey data, supporting a DEI council and creating inclusive hiring practices, the company aims to help everyone feel intrinsically valued, which ultimately drives business success. “If team members are free to be who they are, they’re empowered to come into work each day and share their unique gifts,” Kent said.
We aim to cultivate a culture in which people can show up as their authentic selves.
Adam Behrens headshot
Adam Behrens
Head of Talent Development
FOCUS, (ON WHAT MATTERS)
Intentional professional growth
Focus is the crux of Enova’s professional growth culture. “I know everyone at Enova can clearly state what they are working toward and why,” Behrens said. This focus manifests itself as year-round planning. “We set our professional and personal goals,” said Behrens. Planning includes self-grading and opportunities for building skills as a group. “We are intentional about making sure we are appropriately involved in each other’s projects — like our Emerging Talent initiative and highlighting career stories,” said Behrens. “This builds empathy, but honestly, we also love working together.”
Focus is the crux of Enova’s professional growth culture. “I know everyone at Enova can clearly state what they are working toward and why,” Behrens said. This focus manifests itself as year-round planning. “We set our professional and personal goals,” said Behrens. Planning includes self-grading and opportunities for building skills as a group. “We are intentional about making sure we are appropriately involved in each other’s projects — like our Emerging Talent initiative and highlighting career stories,” said Behrens. “This builds empathy, but honestly, we also love working together.”
People at Enova are eager to help and generous with their time. The entire People team is open and supportive of each other, regardless of department.
Nan Xia
Strategy and Operations Manager
PEOPLE COME FIRST
Build relationships, prioritize your life
According to Xia, Enova offers ample opportunities for teammates to connect and unwind. In addition to numerous employee resource groups, the company offers a healthy view on work-life balance and four weeks of paid sabbatical leave for long-term team members. Xia said these perks are only possible because of Enova’s people, whom she considers “highly adaptive” and always willing to embrace new challenges.
According to Xia, Enova offers ample opportunities for teammates to connect and unwind. In addition to numerous employee resource groups, the company offers a healthy view on work-life balance and four weeks of paid sabbatical leave for long-term team members. Xia said these perks are only possible because of Enova’s people, whom she considers “highly adaptive” and always willing to embrace new challenges.
I feel fortunate to have talented colleagues who are willing to share their knowledge and experience with me.
Adam Behrens headshot
Adam Behrens headshot

What are Enova Perks + Benefits

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
Pair programming
Open office floor plan
Flexible work schedule
Enova employees are able to leave at 2pm on Fridays between Memorial Day and Labor Day!
Remote work program
Diversity
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
- B.L.A.C.K @ Enova - HOLA @ Enova - Pride @ Enova - South Asians @ Enova - Women @ Enova - Parents @ Enova
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Team workouts
Enova's team fitness initiatives include Sponsored race teams.
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Return-to-work program post parental leave
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid volunteer time
Sabbatical
Paid holidays
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Some meals provided
We provide free breakfast on Monday.
Company-sponsored happy hours
Company-wide happy hours are hosted once per month and team's host happy hours at their discretion..
Onsite office parking
We offer employees discounted on-site garage parking.
Relocation assistance
Fitness stipend
Home-office stipend for remote employees
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Both company-wide and department-specific events.
Promote from within
Mentorship program
Continuing education stipend
Online course subscriptions available
Customized development tracks
Paid industry certifications

Additional Perks + Benefits

Sabbatical program • Recognition programs • Commuting reimbursement • Monthly social events • Discounted gym memberships • Pet insurance

View full list of perks + benefits
Photo Gallery

More Jobs at Enova

Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about EnovaFind similar jobs like this