Employer Active
Evaluate the Information Security Program including recommending updates to existing policies and procedures to help ensure they are in accordance with established industry practice, compliant with federal and state regulations.
Assist in maintaining the infrastructure by performing pro-active security tasks.
Monitor enterprise security appliances related to host and network, intrusion detection and prevention systems and reports all anomalies to management. Monitoring to include insider threat.
Validates that the Information Security Program is constantly maturing.
Organize and track, audit or assessment findings and recommendations.
Assist in remediating audit/assessment findings and recommendations.
Audit IT solutions, systems and configurations, user access controls, and settings periodically to ensure compliance with established policy and guidelines. Report anomalies to executive management.
Recommends content for the cyber security training program. Review analytics, responses, and results for training administered to evaluate the effectiveness of the program. Ensure that the assignment and tracking of training recommended is coordinated through Human Resources personnel.
Assist in maintaining the Business Continuity and Incident Response plans. Coordinate the implementation of these plans with the organization and business lines respectively.
Assist in carrying out Business Continuity and Incident Response plans test.
Report any information security events/incident to management immediately. Assist with coordination and documentation of the response to an information security incident according to established policies and procedures, as requested.
Research the latest in cybersecurity security trends.
Logs and tracks all issues using ticket tracking system.
Assist in maintaining the departments knowledgebase and additional documentation.
Responsible for personal technology procurement, deployment and management.
Management of the IT help desk including serving as an escalation point.
SUPERVISORY RESPONSIBILITIES:
Direct supervisory responsibility.
EDUCATION, EXPERIENCE and TRAINING:
Bachelors degree in Information Technology.
Minimum five years of work experience in a senior IT Leadership role.
High level knowledge of hardware and networking
Proficient knowledge in Windows Client, Windows Server OS and Linux
Solid project management experience required.
Proficient knowledge in Firewall Appliance, intrusion detection systems, internet filtering, anti-virus technology, application security, secure email gateway
Adept at managing both internal and outsourced vendor relationships.
CERTIFICATES, LICENSES, REGISTRATIONS:
Preferred Certification include but not limited to:
Security+, Certified Information Systems Security Professional (CISSP),
Cisco Certified Network Associate (CCNA),
Cisco Certified Network Associate Security (CCNA-Security)
WORK ENVIRONMENT: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.
Hybrid Role - expected onsite 3 days a week.
Full Time