Our client is looking to add a Cyber Security Manager to its growing IT department. You will be responsible for developing and managing Information Systems cybersecurity across the organization including business units, remote locations, and cloud environments. Maintain an information security strategy (forward-looking roadmap), aligning services/portfolio components to the strategy. Additionally, you will be part of a leadership team and help grow the IT security department.
location: Houston, Texas
job type: Permanent
salary: $100,000 - 120,000 per year
work hours: 8am to 5pm
Responsible for developing and managing Information Systems cybersecurity across the organization including business units, remote locations, and cloud environment. Maintain an information security strategy (forward-looking roadmap), aligning services/portfolio components to the strategy Interact with a broad cross-section of personnel to explain and enforce security measures Monitor the threat landscape and make timely adjustments and/or recommendations to reduce risk Implement cybersecurity best practices to be compliant with internal and external audits (e.g., PCI, SOX, ISO) and coordinate information security services activities to support the audit (i.e., defining, gathering artifacts, etc.) Implement information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of the organization's environment and data. Cultivate trusted relationships with key stakeholders within IS and various business units; keep a consistent and open dialogue to uncover issues, challenges, risks Identify information security weaknesses and potential gaps in the current environment and work with business units and IS to bring information security operations up to standards Develop and deliver security standards, best practices, architecture and systems to ensure information system security across the enterprise. Implement procedures and methods for auditing and addressing non-compliance to information security standards. Migrates non-compliant environments to compliant environments. Evaluates the organization to ensure compliance with standards and relevance with industry security norms. Participate and represent IT Security in Delivery/Operational meetings; conduct an information security operational review meeting with key stakeholders on topics including overall information security status and performance Participate in the strategic design process to translate security and business requirements into technologies, processes, and systems Ensures that project/department milestones/goals are met adhering to approved budgets. Evaluate new/emerging security products and technologies and make recommendations to the leadership in regards to the security impact and value to the organization Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits, and Critical Practice Assessments Review service management reports to ensure tickets (i.e., incidents, problems, requests, changes) related to information security, are being acknowledged, worked and Service Level Agreements are met; provide direction on ticket remediation and ensure remediation is complete Conduct an ongoing security awareness program for personnel ensuring individuals understand and are compliant with the relevant information security obligations including security topics that provide guidance on security policies and supporting documentation and procedures
- Experience level: Manager
- Minimum 6 years of experience
- Education: Bachelors
- Cyber Security (6 years of experience is required)
- SOX (4 years of experience is required)
- SIEM (5 years of experience is required)
- PCI (5 years of experience is required)
- Network Security
Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.