Manager, Cyber Security

Alpharetta, GA 30004

Posted: 08/16/2018 Employment Type: Direct Hire Industry: Security Engineer Job Number: 50888
ob Summary

The Manager of Cybersecurity will sit at our client' s corporate office in Alpharetta, GA and is responsible for developing, analyzing, and updating standards and processes to manage and protect assets, and uncover, resist, and recover from security incidents. This position also assists in developing and operating a formalized risk assessment audit and internal management review program to ensure compliance with existing security policies and procedures. These duties all include policy analysis and related research, security program planning and evaluation. This position must stay abreast of new security threat vectors and proactively evaluate and identify mitigation opportunities to current policies and procedures in an effort to facilitate continuous improvement.
Conducts daily work in compliance with safety policies and procedures. Demonstrates core values of Safety, Personal Integrity, Respect, Innovation and Teamwork in completing work assignments.
Essential Functions and Responsibilities
Develops, validates, and maintains incident response plan and processes to address potential threats.
Monitors information security related websites (US-CERT, SANS Internet Storm Center, etc.) and mailing lists (DHS Infrastructure, BugTraq, etc.) to stay up to date on current attacks and trends.
Participates in industry task forces and working groups (Financial Services Information Sharing and Analysis Center, FBI InfraGard, Anti-Phishing Working Group, etc.) to understand current and future threats.
Manages focused risks assessments of existing or new services and technologies.
Communicates risk assessment findings to information security management or business partners.
Provides consultative advice on information security management that enables business leaders to make informed risk management decisions.
Develops and/or analyzes and revises existing administrative operations and management controls including standard practices, operating procedures, management systems, and reporting documentation.
Manages the monitoring, identifying, and analyzing of security risks to determine their impact on and relevance to client’ s cybersecurity well-being.
Manage research and data analysis for the purpose of reaching conclusions and making recommendations in order to better protect client from cybersecurity threats.
Collaborate with management to maintain and update client' s Business Continuity Plan.
Collaborate with IT management to establish and conduct annual Disaster Recovery Plan.
Manage and update client' s Cyber Security and IT Risk Assessment process and reporting to include tracking and management of any follow-up action items or process updates as required.
Communicate effectively and tactfully with diverse groups of individuals at all levels of the company.
In-depth understanding of network and system security technology and practices across all major-computing areas.
Strong foundation and in-depth technical knowledge of security engineering, computer and network security, authentication, and security controls.
Performs information security risk assessments.
Behave as a mentor to team members, to provide technical advice, assist in personal growth and professional development.
Other duties as assigned.

Minimum Required
Bachelor’ s degree from an accredited college or university in Computer Science, Information Security, or a related field.
5+ years of technical experience in the information security field.
5+ years of practical experience in an incident response role.
Experience working with security regulatory requirements and standards (such as NIST 800 series, ISO 2700x series, GLBA, FFIEC).
Preferred

Master’ s Degree in Computer Science, Information Security, Cyber Security or a related field
8+ years of experience in Information Security, especially on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
8+ years of experience in another IT function, especially IT Audit.
5+ years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.).
Certification & Licensure
Certifications are a plus – examples include:
Certified Information Systems Security Professionl (CISSP), CompTIA Security +, Certified Ethical Hacker (CEH), Check Point Certified Security Expert (CCSA), Check Point Certified Security Expert (CCSE), Security - Microsoft Certified Systems Engineer (MCSE), Cisco Certified Network Associate Security (CCNS), Cisco Certified Network Professional Security (CCNP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials.
Knowledge
Experience developing guidance materials to aid others in the understanding of processes and procedures.
Experience working with security regulatory requirements and standards (such as NIST 800 series, ISO 2700x series, GLBA, FFIEC).
An understanding of emerging security threats in order to design security policies and procedures to mitigate threats where possible.
Must have a firm grasp of concepts and technology across all IT areas to be able to spot gaps and develop appropriate controls.
Skills
Project management.
Advanced skills to present information to stakeholders and/or decision makers in an effective and professional deliverable.
Abilities
Team player with proven ability to work effectively with other business units, IT management and staff, vendors, and consultants.
Strong communication skills such as planning and leading effective meetings.
Seasoned business judgment.
Build relationships with all levels of employees and management
Job Summary

 
Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.