Job Description

What You'll Be Doing:

• Design and drive the security initiatives (collaboratively with SRE and IT teams) to implement and maintain secure systems and networks; including servers, routers, switches, firewalls, intrusion detection/prevention systems, and other security devices.
• Collaborate with third parties to perform vulnerability assessments, penetration testing, and risk assessments to identify/ prioritize potential security risks and vulnerabilities.
• Recommend security policies, controls, and cyber incident response planning, including impact analysis and recommendations for avoiding breaches or incidents.
• Implement and provide ongoing support for cybersecurity policies and procedures.
• Establish Disaster Recovery and Business Continuity processes. Ensure communication of these plans within the organization.
• Lead incident response efforts to investigate security breaches, analyze root causes, and implement corrective actions. Conduct digital forensics investigations when necessary.
• Review and collaborate with LMS on security awareness and best practices training for team members.
• Regularly update the cyber security strategy to leverage new technology and threat information.
• Responsible for supporting any additional aspects of IT security strategy and advising on Security Software and Services, including but not limited to staff laptops and any other device security tools.
• Communicate and champion best practices and risks to various parts of the business, as appropriate.
• Helped infrastructure and software engineers audit and develop secure systems by advising on information technology regulatory and security best practices.
• Maintain and disseminate a current understanding of the industry's IT threat landscape and leverage various threat intelligence sources.
• Establish a 24/7 global monitoring and threat detection environment, and implement security information and event management (SIEM) solutions for centralized monitoring and analysis.
• Assist in the identification of new tools and systems to reduce and/or manage risks.
• Ensure technical documentation for security practices and procedures.

Who You Are:

• Bachelor's Degree in Computer Science, Information Technology,or related field preferred
• Significant knowledge and demonstrated track record leading SaaS security environments and industry standards, such as NIST, ISO 27001, and CIS Critical Security Controls.
• Strong understanding of networking concepts and protocols, such as TCP/IP, VLANs, VPNs, and routing/switching.
• Familiarity with security-related regulations, such as CCPA, GDPR, HIPAA, and PCI-DSS.
• One (or more) of the following security certifications: ISC2 certificates, GIAC certificates, CISM/A, CEH, etc.
• Security control concepts: physical, logical, administrative
• Minimum of 5 years of experience in cybersecurity, system security engineering, network security, or performing and running information security assessments in direct support of compliance or a related field.
• Excellent analytical, problem-solving, and troubleshooting skills.
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
• Implement security information and event management (SIEM) solutions for centralized monitoring and analysis.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

• Dice Id: RTX1c3114
• Position Id: 8504116

Job Tags

Similar Jobs