IT Security Operations Manager (Cybersecurity) - Hybrid

Tactical Security Planning

Lead the analysis and assessment of current security posture

Accountable for contextual security analysis of data gathered from research and forensics

Lead the planning and development of contingency plans to respond to potential threats and security incidents

Prioritize, initiate and manage IT Security Operations annual projects based on Security

Architecture

Security Incident Response and Forensics

Develop and maintain the Security Incident Management Process

Manage the Computer Security Incident Response Team (CSIRT) to proactively analyze and directly

respond to internal and external threats

Lead security breach investigations including handling of digital forensic activities such as, but not limited to:

a) Intrusion detection assessment

b) Risk identification, severity evaluation, potential impact analysis and solution generation

c) Determines appropriate response and disseminates information

d) Works with different line organizations to preserve evidence and assist with prosecution

e) as necessary

Security Controls

Manage security system resources and capacity utilization

Oversee compliance to key performance indicators and service level agreements

Plan, design and oversee execution of IT Security Operations projects

Threat and Identity Management

Establish technical security controls

o Oversee malware threat management at the gateway and endpoints, vulnerability and patch management

o Plan and participate in disaster recovery activities

o Evaluate changes in asset base and resultant security implications

o Oversee access and identity lifecycle

o Oversee the management of passwords of privileged accounts

o Oversee management of controls for mobile computing to address asset protection, secure access,

and user responsibilities

o Oversee access monitoring, which refers to mechanisms to monitor system access and system use,

to detect unauthorized activities

Oversee the monitoring of threat actors and correlation with events, logs, feeds from ICT resources.

Security Consultancy

Provide IT/OT security consultation on security threats and incident handling.

Provide security assurance for operational change management.

People Management

Determine training and certification requirements for personnel

Foster a security-aware culture, disciplined business conduct, and healthy open communication

Define functions, roles and establish performance goals and standards

Conduct performance reviews, coaching and mentoring

Manage administrative records required for employee action such as promotion, suspension, discharge or change in status

Requirements:

At least a bachelor's degree in Computer Science, Information Systems/Technology, or other related field

Has at least 8 years of Information Technology experience with solid background in

Information Security Management

Ability to partner with and influence a variety of stakeholders to ensure security requirements are understood and met

Advanced risk analysis, problem solving, consulting skills and relationship management skills

Understanding of the information security risks that are inherent to the business

Familiarity with information security frameworks and standards (NIST, ITIL, COBIT, ISO/IEC

27001 and 27002, Project Management)

Ability to interpret and apply policies, standards and procedures

Require knowledge on several areas, including:

o Current security tools

o Business security practices and procedures

o Hardware/software security implementation

o Encryption techniques/tools

o Communication protocols

The following certifications (or equivalent) may also be required:

o CISSP

o CISM

o CISA

o CEH

o Security+

o MCSE: Security or MCSA