Sr Manager, Cyber Security

Responsibilities:

• Manage a team of security operators/responders and interact with cybersecurity leadership and business stakeholders.
• Implement a cross-functional team working closely with cybersecurity, IT and developers.
• Handle day-to-day leadership of implementation, monitoring and operational support of hardware, managed solutions and service provider relationships.
• Support cloud security architecture for SaaS, PaaS and IaaS.
• Recommend and implement cloud security tools and controls.
• Use cloud security tools for asset discovery, cloud workload protection platform (CWPP), control plane configuration and cloud security posture management (CSPM).
• Develop, maintain and enforce cloud security policies and procedures, as well as best practices for following standards such as FedRAMP, Cloud Security Alliance, SOC 1/2/3, CIS and NIST SP 800 series.
• Communicate the state of cloud security posture to cybersecurity leaders, stakeholders, IT and developers.
• Stay up to date with cybersecurity threats, risks and vulnerabilities with potential impact to services.
• Collaborate with IT and cybersecurity leadership to develop practices to reduce attack surface, as well as countermeasures to impede internal threats and external attackers.
• Define key performance indicators, objectives and key results, and metrics to illustrate efficacy with cloud infrastructure and applications.
• Actively participate and lead security team meetings that facilitate secure network design and execute to the guidance on the network infrastructure. 
• Engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, deliver projects on time, within budget and in accordance with service level agreements (SLAs).
• Assist with incident response and system stability issues as they occur. This may include involvement outside of regular work hours, and responsiveness is expected.
• Work in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members. 
• Respond to and handle service and escalation tickets within SLA expectations.
• Participate regularly in change project and change management meetings.
• Research, validate and deploy solutions meeting security and business needs.
• Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.
• Conduct performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted. 
• Perform other duties as assigned

Required Qualifications:

Education: 

• Bachelor’s degree preferred in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field.

Experience: 

• At least 10 years’ experience in IT and security operations
• 5 years leading a technical cybersecurity team
• 3 years cloud experience

Licenses: 

Preferable, but not required: CISSP, CISM, CRISC, CISA, GCIH, GCFA, GCFE