Team Lead - IT Security and Compliance

About The Position

Requirements

• A bachelor's degree or equivalent certification is required (IT Cyber Security, Information Technology, Computer Technology; will also consider equivalent experience)
• 5-7 years of direct and relevant cyber security experience is required (end point, network, perimeter, threat management, etc.)
• 5-7 years of security administration experience is required (supporting multiple platforms and applications)
• 5-7 years of IT compliance standards and frameworks experience is required
• 5-7 years of process improvement implementation experience is required

Responsibilities

• Responsible for overseeing all aspects of information and cyber security such as endpoint, network, access management, and compliance.
• Evaluate, identify, recommend, implement, and maintain optimal and organizationally appropriate IT security and compliance designs, technology platforms, and solutions
• Monitor networks and systems for incidents, security breaches, and intrusions
• Conduct and analyze network scans to identify vulnerabilities
• Conduct penetration testing to find exploitable weaknesses
• Investigate and remediate security breaches, vulnerabilities, and weaknesses
• Lead security incident responses, including steps to minimize impact and overall investigation/analysis of root cause
• Ensure security awareness training for workforce on IT security best practices and policies
• Manage IT security related service requests
• Design, implement, and maintain IT infrastructure, systems, and operations to comply with internal security policies and external regulatory requirements
• Ensure alignment with CMMC, DFARS, ITAR, EU NIS2, and other relevant frameworks, continuously monitoring for updates
• Coordinate regular control assessments/gap analyses and drive remediation activities
• Serve as liaison for internal teams and external assessors/auditors
• Lead, manage, and supervise activities, systems, and resources, as required, to support and maintain a secure and compliant Calgon Carbon IT environment
• Serve as Calgon Carbon security lead on Kuraray DX-IT global security team
• Serve as internal project manager for IT security and compliance related projects and initiatives
• In this capacity, develop business case, project timeline and plan, resource requirements, hardware, software, and system requirements
• Manage and coordinate project plans and activities
• Manage relationships with key IT suppliers and service providers to optimize spending, investments, and ensure agreed-upon service levels are met
• Assist in IT investment and expenditure initiatives by performing cost-benefit and total-cost-of-ownership analyses
• Develop and carry out information security policies and procedures
• Ensure appropriate policies and procedures related to IT security and control environment are published, maintained, and updated
• Develop strategies to protect networks, systems, and sensitive data from security threats, intrusions, and breaches
• Work with IT management on addressing global IT strategy, technology roadmap, and short-/long-term initiatives and priorities, especially where security and compliance areas are considered

Benefits

• Medical, dental, prescription & vision
• HSA & retirement savings (401k) – Generous Company Match!
• Incentives/bonus plans
• Competitive pay
• Dress for your day
• Hybrid schedules
• Paid time off (vacation starting at 3 weeks)
• Tuition reimbursement
• Wellness programs
• Fun events
• Learning & development opportunities