Address
Form of workOverview
This position is primarily responsible for managing and overseeing the cybersecurity needs of the organization. Job responsibilities include defining data and network security, security policy, and security strategy. Their duties involve security operations, cyber-risk and cyber intelligence, data loss prevention, fraud prevention, identity and access management, investigations, and governance. The chief information security officer needs an in-depth understanding of information security, solid comprehension of the organization's overarching vision, and the ability to combine the two into an actionable strategy.
e
Company Overview: Beazer Homes is committed to employee wellbeing and life-work balance, offering development opportunities, a flexible time-off program, and an industry leading parental leave policy.
Primary Duties & Responsibilities
Education & Experience
Skills & Abilities
Technical Knowledge & Experience
Physical Requirements
Additional Responsibilities
The above statements are intended to describe the general nature and level of work being performed. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. Additionally, an employee's job duties may change at any time, in the company's sole discretion.
Personal Information Collection Notice for Job Applicants
In order to process your application, we will ask you to create an account and provide us with certain personal information, including your identification data (e.g. name, date of birth, driver's license number, contact details), education information, and professional and employment history. If you have any questions about our privacy policy or would like to learn more, please visit Beazer.com/privacy, which includes a link to an additional notice for California residents and which link can also be visited directly at Beazer.com/Californiaprivacy.
Equal Opportunity Employer
This position is primarily responsible for managing and overseeing the cybersecurity needs of the organization. Job responsibilities include defining data and network security, security policy, and security strategy. Their duties involve security operations, cyber-risk and cyber intelligence, data loss prevention, fraud prevention, identity and access management, investigations, and governance. The chief information security officer needs an in-depth understanding of information security, solid comprehension of the organization's overarching vision, and the ability to combine the two into an actionable strategy.
e
Company Overview: Beazer Homes is committed to employee wellbeing and life-work balance, offering development opportunities, a flexible time-off program, and an industry leading parental leave policy.
Primary Duties & Responsibilities
- Ensures the integrity and confidentiality of information residing in corporate databases, workstations, servers, and other systems.
- Works with all business units to determine possible risks and risk management processes.
- Analyzes IT security threats in real-time and mitigates these threats.
- Ensures that newly acquired technology complies with IT security regulations.
- Plans and designs an IT and network strategy for the company.
- Manages the continuous maintenance of the IT network to ensure optimum security levels are maintained.
- Sources the necessary hardware and software to implement the IT strategy and negotiate contracts.
- Ensures that no internal breaches or misuse of data take place and determines the cause of internal and external data breaches and institutes appropriate corrective action.
- Presents regular feedback reports on IT network security to the IT Steering Committee.
- Ensures engagement with the whole organization. Ensures that industry knowledge and technical information can be translated into a secure, informed series of processes that can both maintain compliance against business standards for information and cyber security and enable innovation and competitive advantage in commercial tenders.
- Maintains alignment with relevant standards (including NIST 800-53 and 171) providing suitable assurance to ensure compliance and continual improvement of controls.
- Advises and communicates cyber metrics to Board of Directors and Executive Leadership to enable delivery against an effective cyber security vision, culture, and strategy that provides the right controls to defend the business but retains the agility to create an organization that is pioneering, market-leading and innovative.
- Continues to develop and deliver industry-leading security cultures, creating the right tools, content, and messaging to drive continual improvement of the human aspects of security controls.
- Supports major projects with consultancy services and security insight and direction. Act as a key stakeholder on many internal boards, supporting in making the correct decisions to manage and reduce risk.
- Implements zero trust security model and zero trust network architecture
Education & Experience
- Requires a BS degree in Information Systems, Information Security, or related field with 12 years of security related experience.
- Certifications relating to Information Security is a plus.
Skills & Abilities
- Strong Knowledge of the NIST framework.
- Strong knowledge of applicable practices and laws relating to data privacy and protection.
- Strong Knowledge of network and IS security components, including firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices.
- Strong knowledge of IP, TCP/IP, and other network administration protocols, including their vulnerabilities and solutions.
- Strong organizational skills and excellent attention to detail.
- Able to prioritize and execute tasks in a high-pressure environment.
- Experience working in a team-oriented, collaborative environment.
Technical Knowledge & Experience
- Expertise working with application teams and advising them on necessary security standards and remediation utilizing known frameworks such as NIST and OWASP.
- Familiarity and experience supporting SSAE 16 or SOC 2 in both internal data centers/cloud infrastructure and audit of hosting facilities.
Physical Requirements
Additional Responsibilities
The above statements are intended to describe the general nature and level of work being performed. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. Additionally, an employee's job duties may change at any time, in the company's sole discretion.
Personal Information Collection Notice for Job Applicants
In order to process your application, we will ask you to create an account and provide us with certain personal information, including your identification data (e.g. name, date of birth, driver's license number, contact details), education information, and professional and employment history. If you have any questions about our privacy policy or would like to learn more, please visit Beazer.com/privacy, which includes a link to an additional notice for California residents and which link can also be visited directly at Beazer.com/Californiaprivacy.
Equal Opportunity Employer
