The Information Security Manager is responsible for the research analysis of all cybersecurity information being produced by the corporation's cybersecurity systems and the aggregation and filtering of that information by an MDR or CyberSOC. The Information Security Manager will be responsible for the reporting from all the enterprise's information security infrastructures as well as for the reporting from newly deployed security tools and technologies throughout the enterprise.
Responsibilities:
- Supervise AUS CyberSOC and MDR Contract Discharge: Review reports provided by MDR, track investigations, close out investigations
- Collect data from various sources and prepare regular management reports
- Oversee and track projects pertaining to Information Security
- Head Incident Response Team by running War Rooms
- Coordinate Penetration Testing
- Analyze data from Vulnerability Management Program and Configuration Management Program
- Project Manage deployment of security solutions
- Assist with documenting, modifying, and publishing compliance related SOPs and policies
Abilities:
- Hands-on ability to work with and extract information from common information security systems: Antivirus, EDR, MDR, IDS, IPS, CyberSOC, NAC, SEIM, Hard Drive Encryption,
- Knowledge of Mobile Device Management tools, their implementation, and ongoing support
- Knowledge of common cybersecurity attacks and indicators of compromise: phishing, smishing, malware, man in the middle attack, SQL Injection, Denial of Service Attacks, Insider Threats, Cryptojacking, Ransomware
- Knowledge in setting up and running information security training programs and phishing campaigns
- Skilled and proficient in MS Office O365 suite security
- Knowledge of data visualization in MS Excel and Access: graphing and data manipulation, importing text files, normalizing data, drawing trends, charting
Working Environment/Safety Requirements:
- Ensure necessary working environment and capabilities to effectively carry out responsibilities if working from a non-AUS location (remote work)
- Ability and willingness to handle work related issues during all hours of the day, every day of the week, understanding the responsibility of our organization's requirement for 24/7 production support
- Ability, willingness, and flexibility to travel as needed for approved work purposes in accordance with project and management schedules
- Be legally able to work in the United States: U.S. Citizen or Legal Resident
- Be legally able to travel to Canada and Mexico
Experience/Qualifications:
- Bachelor's degree in information technology, information security, accounting, or related field or equivalent experience
- 7+ years of demonstrated hands-on experience leading security and technology teams with oversight for operations, project management, budgets, and team leadership
- Demonstrated experience in successfully defining security programs, developing requirements, designing, prototyping, testing, training, defining support procedures, and implementing practical business solutions under set deadlines
- Ability to lead and facilitate teams across the enterprise through security and compliance programs
We are an equal opportunity employer and make hiring decisions based on merit. Recruitment, hiring, training, and job assignments are made without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, or any other protected classification. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance.