|Date Posted||January 11, 2022|
Ref ID: 02760-0012102545
Classification: Security Manager
Job Description / Roles & Responsibilities
Manage the implementation and administration of cybersecurity technologies throughout the environment (e.g., on-premise, cloud, end user device).
Develop, implement, and monitor organizational compliance to cybersecurity policies and standards, as well as associated administrative and technical controls.
Develop, implement, and monitor programs and technologies to proactively identify and mitigate cyber security risks (e.g., vulnerability management, cyber risk assessments, penetration testing, 3rd party/vendor risk management, exceptions management, contract riders).
Develop, implement, and monitor organizational compliance to cybersecurity training, awareness , and user phishing exercises.
Develop, implement, and periodically test an IT Disaster Recovery Program and associated technologies and process to ensure critical systems can be recovered withing the organization’s desired recovery time and recovery point objectives.
Develop and implement cybersecurity incident response processes in alignment with organizational Business Continuity and Crisis Management. Conduct periodic cross functional testing to ensure the organization can appropriately respond to a cybersecurity incident.
Manage comprehensive 24x7 Security Operations Center monitoring, alerting, and response capabilities; including threat hunting and dark web monitoring.
Work through partner resources to proactively drive continuous technology, service, and process improvement.
Oversee projects and initiatives to deliver in scope, on budget, and on time cybersecurity solutions.
Lead vendor selection activities including defining requirements, RFI and RFP, selection criteria, qualitative and quantitative analysis.
Contribute to IT strategy, technology roadmaps, resource planning, and IT budgeting . Ensure adherence to IT governance processes.
5+ years experience managing cyber security technologies and implementing cyber risk management controls.
3+ years cyber security leadership experience managing technical teams and vendors delivering cyber security services.