Cybersecurity Operations Manager

Job Overview
Our client in the Summit area of NJ has an excellent opportunity for a Cybersecurity Operations Manager!   
 

Responsibilities:

  • Work with the Director of Information Security to develop a security program and projects that address identified risks and business security requirements.
  • Manage a staff of information security professionals and external service providers.
  • Oversee the “24×7” external threat detection, monitoring and incident response service. Maintain and support its on-premise detection technology and SIEM.
  • Supervise investigations into suspected incidents and breaches, and serve as an escalation point for all security events and daily operations. Provide timely communication to senior management, including root cause analyses to illuminate the issues and possible solutions.
  • Develop and maintain the security architecture design, and enhance information security documentation, including policies, standards, baselines, procedures, and technical manuals.
  • Provide technical leadership and guidance on all organizational technology and security initiatives.
  • Lead the identification, evaluation, deployment, and implementation of all new security solutions, and continuously enhance existing solutions and services in accordance with best practices and standards.
  • Liaise with IT staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, software, and business applications.
  • Continuously improve data protection, data loss prevention (DLP), and identity and access management technologies and procedures for on-premise and cloud services.
  • Manage the day-to-day activities of threat and vulnerability management, recommend treatment plans, and communicate information about residual risk.
  • Monitor and report on emerging risk and compliance with organizational security policies.
  • Oversee penetration tests and support internal and external audits.
  • Participate in business continuity and disaster recovery planning, as well as change management forums.
  • Stay current on topics in Information Security by researching emerging trends, technologies, threats, and vulnerabilities.
  • Occasional weeknight and weekend work are expected based on required network environment maintenance and support.

 

Qualifications:

  • Minimum of 2 years’ experience managing information security staff or teams responsible for cyber security.
  • Minimum of 7 years’ experience in IT, with 5 years’ experience in an information security role.
  • Bachelor’s Degree in Computer Science, Information Systems, Cyber Security, or equivalent related technical field.
  • Certification in one or more areas is strongly preferred: CISSP, GIAC, CEH, CISM, CRISC, or other security related.
  • Experience with NIST Cybersecurity Framework, NIST 800-53, ISO 27001/27002, CIS CSC Top 20, OWASP Top 10 and CWE/SANS Top 25.
  • Development and documentation of security architecture, including strategic, tactical, and project plans.
  • Experience working with legal, audit, and compliance staff in a regulated environment.
  • Experience developing and maintaining policies, procedures, standards, and guidelines.
  • Excellent understanding of information security concepts, protocols, industry best practices, and strategies.
  • Network and Cloud security architecture development and definition.
  • Demonstrated experience within multiple security disciplines, including Network Security, Incident Management, Cloud Security, Endpoint Protection, Data Protection, Data Loss Prevention, Identity and Access Management, and Vulnerability Management.
  • Excellent verbal, written, and interpersonal communication skills, including the ability to effectively convey complex information to IT, management, and business personnel.
  • Knowledge of security best practices across multiple platforms, including Microsoft Windows and Office 365 environments, Palo Alto, Citrix, and VMWare.
  • Comfortable working with a variety of technologies supporting large scale deployments, troubleshooting solutions issues, and proficient in monitoring and investigating security events.
  • Management of security appliances and services, including firewalls, intrusion detection systems, web application firewalls (WAF), secure web gateways (SWG), proxies, and cloud access security brokers (CASB).
  • Administration of Security Information and Event Management (SIEM) platforms, log collection, and tuning.
  • Proven experience in handling security incidents and response planning.
  • Secure coding practices, ethical hacking, and threat modeling a plus.
  • Familiarity with third-party audits and cloud risk assessment methodologies.
  • Strongly self-motivated and team oriented, with the ability to drive initiatives under minimal supervision.
  • Strong business process knowledge and application of technology solutions.
  • Strong customer / client focus, with the ability to manage expectations appropriately.
Job Detail
Shortlist Never pay anyone for job application test or interview.