IT Cybersecurity Manager – Dallas

 

Our client (an industry leader in their respective field) is adding Cybersecurity Manager role to their Enterprise IT organization, reporting directly to the CISO.

The role will have the responsibility of managing and ensuring that security infrastructure and products are running optimally, effectively and capable of defending against the latest cyber-attacks, data leakage, insider threats and unauthorized access.

The Cybersecurity Manager creates and develops security measures to safeguard information against accidental or unauthorized modification, destruction or disclosure. Coordinates with management, programmers, risk assessment staff, auditors, facilities and other security departments to identify and plan for security in all aspects of data, applications, hardware, telecommunications and computer installations.

Additionally, will manage and direct the complex areas of data security, threat and vulnerability management, security auditing and analysis, risk assessment, compliance and agency-wide security awareness and maintenance of the Information Security Program. Formulates policies and procedures, which have significant impact on computer operations and systems development lifecycle. Responsible for consistent communications and interface with all levels of management and vendors. Leads the company’s incident response activities, including training objectives.

Normal Role Responsibilities

  • Manage a staff of direct reports, while being hands-on in the execution of certain tasks.
  • Document and organize (business) processes, as well as the related reference data, and re-design these processes in a cross-functional optimal flow, taking into account separation of duties.
  • Preparing accurate and detailed Process Description documents, Graphical representations of workflows, and functional specifications in the form of SOP’s.
  • Interacting extensively with internal and/or external customers.
  • Coordinate internal resources and third parties/vendors for the execution of projects, focused on achieving the best outcome for the company, not necessarily the project
  • Performs the role of liaison between the department and critical functional areas such as Risk Management, including cybersecurity insurance.
  • As a member of the Audit Committee, ensures proper adherence to IT Governance and Cybersecurity principles along with performing the role of liaison between company owned properties and management companies.
  • Develop, maintain and utilize system for tracking all audit results (proactive and reactive).
  • Administer a Disaster Recovery Program that aligns with the company’s Operations Plan.
  • Maintain and submit the Company Strategic and Operational IT Security Plans, in accordance state and federal guidelines.
  • Develop, and periodically update, written security policies and procedures. Including a process for detecting, reporting and responding to threats, breaches or IT security incidents that are consistent with the security rule, guidelines and processes established by the company, CIO and CISO.
  • Manage security projects and assists in project management team activities related to planning, development, implementation and coordination of security aspects of information technology projects.
  • Evaluate security product enhancements to ensure continuous improvement.
  • Establish and lead Computer Security Incident Response Team (CSIRT) for all IT security incidents and breaches.
  • Provide quality customer service to internal and external customers.
  • Travel to property locations as needed.

Professional Work Experience Requirements:

  • College degree – with a technical degree highly preferred
  • 5+ years of IT security management experience in a medium to large global enterprise.
  • Be able to report on important milestones, developments and projects that affect the business in terms understandable to the business.
  • Maintain a functional dashboard for others to gauge state, status and progress of activities and projects.
  • Highly desired vendor technologies: Cisco VPN's, Cisco/SonicWall firewalls, Cisco wireless, Cisco Switch administration and configuration,  Citrix, VMware and Cloud Access Security Brokers.
  • One or more certificates (CISA, CISSP, etc.) preferred
  • Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security.
  • Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP Networks.
  • Expert understanding of a wide variety of cyber security incidents related to network intrusions, web-based attacks, malicious emails, root and user level compromises, malware, botnet infections and other anomalous activity.
  • Expert understanding of existing and evolving Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI DSS), Protected Health Information (PHI) and state regulatory requirements as well as NIST Cybersecurity framework and underlying publications.
Submit Resume
Comments are closed.