Cyber Security Manager - Remote Opportunity

Job Description

TRC Companies, Inc., a pioneer in groundbreaking scientific and engineering developments since the 1960s, is a global consulting, engineering and construction management firm that provides technology-enabled integrated solutions to the energy, environmental and infrastructure markets. TRC serves a broad range of clients in government and industry, implementing complex projects from initial concept to delivery and operation.

TRC is ranked #17 on ENR's list of the Top 500 Design Firms in the United States.

**This is a remote opportunity**

We are seeking a Cyber Security Manager to join our growing Information Security Team. As a Cyber Security Manager, the role will focus on performing and delivering technical security risk assessments using various frameworks to assist our employees/clients in mitigating existing and future security risks. In addition, require your expertise and guidance on advisory questions ranging all verticals of information security program management. If you are an experienced or knowledgeable information security professional with consulting experience, we are looking for you.

Responsibilities

• Reporting to the Chief Information Security Officer, you'll be apart IT Leadership team you will be a key part of our security team focused on hands-on execution and liaison between working groups and management
• Responsible for developing, implementing, and executing a comprehensive set of security standards and guidelines, including but not limited to security operations, incident response, vulnerability management, network security, data protection, and loss, endpoint security, compliance program, and identity and access management.
• Responsible for Cyber operational management and ability to move the needle and keep projects on pace for delivery. Must be able to lead and work with senior technologist.
• Provides leadership, guidance, and training to information systems, security personnel and upper management
• Oversee multiple cybersecurity engagements with a primary focus on managing delivery of cyber initiatives and working with a Cyber architect.
• Manage and ensure completion of security assessments, technical remediation projects, ISO 27001 Audits and Cyber incidents.
• Project delivery and technical lead on other projects including incident response, EDR/SIEM/MDR managed services, and technology deployments
• Reviewing, implementing, updating, and documenting companywide information security policies and procedures
• Managing security audits and vulnerability and threat assessments, and directing responses to network or system intrusions
• Stay current on cyber risks and issues to help define strategies for firm clients to protect their organizations
• Work collaboratively with other practice areas including Management technology, Technology implementation, Risk consulting, Legal, Mergers and acquisitions, etc.
• Ensuring fulfillment of legal and contractual information security and privacy mandates, including providing executive management with compliance reports and audit findings
• Develops strategies to respond to and recover from a security breach and implement open source/third-party tools to assist in detection, prevention, and analysis of security threats. Conducts periodic network scans to find any vulnerability, as well as penetration testing, simulating an attack on the system to find exploitable weaknesses.
• Conducts awareness training for staff on information security standards, policies and best practices.
• Develops and implements information security plans and policies.
• Monitors networks and systems for security breaches, with software that detects intrusions and anomalous system behavior.
• Leads incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage.
• Provides engineering support to integrate security and compliance requirements into all enterprise information systems and projects as part of the SDLC process by working closely with various IT areas.
• Performs all other duties as assigned.

Requirements

• Bachelor's degree from an accredited college or university in Information Technology, Engineering, Computer Science, Information Security and five or more years of Information Technology Security experience; or equivalent combination of education and experience. Master's degree a plus
• 5+ years of Information technology administration and management experience preferred.
• Preferred technology experience: advanced experience with big data, cloud, Microsoft 365 AIP and E5 Suite and major virtualization technologies.
• Experience with enterprise-ready technologies at a global scale like Windows, Unix, Cisco, Palo Alto; regulatory and industry frameworks and standards (i.e. 20 critical controls, CIS, PCI-DSS, ISO 27000, NIST 800, HIPPA, etc.); and web and network penetration tools and techniques.
• Possesses sound analytical, problem-solving, and critical thinking skills. Must have ability to think creatively.
• Demonstrates ability to communicate in both oral and written fashion to both technical and non-technical personnel. Fosters open and collaborative communication in groups and meetings. Ability to use interpersonal communication skills and to interact with co-employees, customers and supervisors with tact and courtesy.
• Ability to formulate and communicate highly technical and complex security concepts and risks to both technical and non-technical audiences in a clear and effective manner.
• Demonstrates ability to meet deadlines and understand the impact postponing or delays has on others inside and outside division.
• Must be to understand cloud, zero trust and technology implementations
• Ability to write technical reports and communicate technical content to non-technical audiences.
• Exhibits self-assurance and a creative aptitude to find solutions beyond the scope of the project while demonstrating understanding of impact to other projects.
• Ability to work with minimal supervision.
• Must have a valid driver license with a clean record and ability to rent a car

Travel:

This position requires 10% - 15% travel

TRC offers advancement potential and a competitive compensation package including a 401k plan with a company match. For more information please visit our TRC careers website atwww.trcsolutions.com/careers. If interested in this position, please submit your detailed resume through the website.

TRC is an equal opportunity employer: disability/veteran. We celebrate diversity and are committed to creating an inclusive environment for all employees.

#LI-HN1

Additional Locations

New Brunswick, NJ - George St - NBK, Camden, NJ, Linden, NJ, Clifton Park, NY - CFPK, Brooklyn, NY, Bronx, NY, Arlington, VA, Arlington, TX -Highlander Blvd - DAL, Ann Arbor, MI - ANN, Raleigh, NC - RAL, Charlotte, NC, Charlottesville, VA, Lake Charles, LA, Charleston, WV - WVCH, Houston, TX, Houston, TX - St. Mary's Lane - HST, Dallas, TX, Austin, TX - US Highway 183 So - AUS3, Austin, TX - East Huntland Dr - AUS4, Baltimore, MD, Washington, DC - WASH, Fort Lauderdale, FL - LAUD, Gainesville, FL - GAIN, Jacksonville, FL, Windsor, CT - TRC, Bridgeport, CT - BRGPT, Milford, CT - MFD