Job Description The Manager of IT Security is accountable for devising and implementing the Cyber Security Strategy to safeguard assets and technologies across all Business Units. Collaborating with senior management, executives, and third-party vendors, the candidate will ensure the company's Cyber Security programs meet business needs while mitigating cyber and data risks. Reporting to the VP of IT, the role entails maintaining processes and technologies to uphold acceptable cyber risk levels and deliver secure, innovative solutions aligned with the Cyber Security Strategy. Responsibilities:
- Develop a Corporate information security vision and strategy aligned with organizational priorities.
- Establish and cultivate a team of IT Security experts within Business Units.
- Ensure Security compliance with IT Manual and oversee Security Governance & Compliance.
- Lead Internal IT General Controls and Cyber Security Audits.
- Collaborate with Business Unit IT teams to develop and maintain the Corporate Cyber Security Incident Response Plan.
- Conduct Tabletop Reviews of the Incident Response Plan.
- Assist in designing and administering Cyber Security Awareness Training.
- Manage threat response, vulnerability management, and risk mitigation.
- Lead the information security function across the organization.
- Provide regular reporting on the information security program status to senior leaders.
- Work with vendor management teams to ensure information security requirements in contracts.
- Establish a metrics framework to measure the efficiency of Security and Data Governance Programs.
- Create and manage an information security awareness program.
- Manage the budget for the function.
- Partner with business and executive leadership to ensure security measures in application and platform development.
Qualifications:
- Detailed understanding of Network Devices, Anti-Malware solutions, Intrusion Prevention Systems, Web Content filtering solutions, DLP Technologies, Web Application Firewalls, and SIEM Solution.
- Certifications such as CISA, CISM, CISSP, CompTIA Security+ are desirable.
- Knowledge of Cyber Security Frameworks like NIST, CSF preferred.
- Minimum 7+ years of experience in information services with 5 years in Information Security domains.
- Bachelor's Degree required, with a concentration in computer science preferred.