Manager - Cybersecurity

Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels.  Carpenter Technology’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.  Building on its history of innovation, Carpenter Technology’s wrought and powder technology capabilities support a range of next-generation products and manufacturing techniques, including novel magnetic materials and additive manufacturing.

MANAGER - CYBERSECURITY

PRIMARY RESPONSIBILITIES FOR THE MANAGER - CYBERSECURITY

• Provides leadership, and well as operational and tactical direction to diverse teams including cybersecurity analysts, SOC, and IT.
• Develop and continuously improve operational components of incident management, including detection, response and reporting. 
• Manage day-to-day activities including incident handling, threat intelligence, vulnerability. management, technology lifecycle management, and continuous improvement.
• Serves as lead security incident handler and guides incident response.
• Monitors threat intelligence feeds and updates security metrics.
• Examine malware and malicious scripts.
• Governs using policies, standards, procedures, and technical controls.
• Develops and manages staff.
• Applies best practices from authoritative sources such as NIST, CIS, ISO, OWASP, and SANS
• Leads Security Operations including handling requests from Business and IT teams.
• Guides internal customers with security policy and assists with security awareness
• Research, evaluates, recommends, and implements IT security solutions (e.g., firewalls, intrusion detection, malware prevention, endpoint protection, etc.)
• Tests effectiveness of security program and controls
• Communicates effectively with business leads to identify needs and evaluate alternative secure solutions
• Establishes quality and technical standards
• Manages vendors and managed security service providers
• Performs internal compliance assessments and responds to regulator/customer inquires
• Performs all other duties and special projects as assigned.

REQUIRED FOR THE MANAGER - CYBERSECURITY

• B.S. degree (required) or M.S. degree (preferred) in computer science or information technology
• Relevant IT and security certifications including CISSP, CISM, GCIH, and GSLC.
• 12 years of related hands-on experience with Cybersecurity, Information Security, or other related system experience.
• 3 - 5 years of related experience leading IT or Security teams.
• Staff management role responsible with technical services.
• Deep understanding of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.)
• Expert knowledge of security domains and common security controls.
• Experience with Security Operations Management.
• Experience with security infrastructure implementation (Including Enterprise, Manufacturing, and Cloud Environments) and technology lifecycle management.
• Security Incident Response Team experience, ideally as team lead.
• Familiarity with safeguarding Manufacturing/Energy Industrial Control Systems.
• Ability to manage operations, projects, and security incidents simultaneously.
• Ability to positively influence others without use of authority.
• Budget forecasting and expense management.
• Continuous process improvement based on lessons learned and best practices.
• Project Management and Governance.
• Strong collaboration skills and comfortable working in a team environment.
• Ability to manage stressful situations associated with cyber-attack.
• Ability to influence IT and Business customers regarding security, compliance, and risk.
• Ability to credibly communicate cybersecurity concepts to technical and non-technical audience.

Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees.

Carpenter Technology Corporation’s policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.