Manager, Cyber Security & Compliance

About The Position

Requirements

• Bachelor's degree in computer science, information technology, or a related field
• 5+ years of experience in information security
• Experience with security frameworks and methodologies
• Experience with security assessments and audits
• Experience with security compliance
• Experience with security incident response
• Experience with security risk management
• Experience with security budgeting and reporting
• Strong analytical and problem-solving skills
• Excellent communication and interpersonal skills
• Ability to work independently and as part of a team
• Ability to work under pressure
• Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions
• Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies
• Cloud security knowledge and skills; securing cloud environments as well as detecting and responding to cyber security incidents in the cloud
• Log analysis skills and experience in relation to identifying and investigating security incidents
• Strong knowledge of PAM, IPAM, and IAM Solutions
• Knowledge of the Technologies and Products including Web Proxy Filtering, EDR, and WAF
• Excellent written/oral communication, interpersonal and problem solving skills
• Able to thrive in both independent and collaborative work environments
• Able to effectively oversee multiple and concurrent projects / responsibilities

Responsibilities

• Manage Projects to implement new security solutions on time and on budget
• Design and Build new security solutions to improve the security posture of the organization
• Recommends and participates in the analysis, evaluation, and development of enterprise systems long-term strategic and operating planning to ensure that IT objectives are consistent with security best practices
• Research new attack vectors and technologies to mitigate potential threats
• Reviews, develops, tests, and implements security plans, products, and control techniques
• Manage the Security Operations Center Team to monitor and improve an organization's security posture while preventing, detecting, analyzing, and responding to cybersecurity incidents
• Lead response and investigation efforts in data security incidents, provide an after-action report and design corrective actions.
• Coordinate communications with PR team as required
• Track operational metrics related to alerts, incidents, and vulnerabilities
• Review legal documents relating to Governance policies and lead discussions with the legal team.
• Advising the executive team how new Cyber Security Laws will affect the organization’s operations
• Create and/or update Security Policies and Procedures to include tactics, techniques, standard operating procedures and security controls
• Lead Cyber Security awareness training across the organization
• Lead the Change Advisor Board. Ensuring changes are not putting operations of the organization at risk of failures or security incidents