Security & Compliance Manager

S.A. Comunale

  • Norwalk, CT
  • $150,000-166,000 per year
  • Permanent
  • Full-time
  • 2 months ago
Description :About Us:EMCOR Group, Inc. (NYSE: EME) is a Fortune 500 company and a leader in mechanical and electrical construction, industrial and energy infrastructure, and building services.A provider of critical infrastructure systems. EMCOR gives life to new structures and sustains life in existing ones by it planning, installing, operating, maintaining, and protecting the sophisticated and dynamic systems that create facility environments. This includes electrical, mechanical, lighting, air conditioning, heating, security, fire protection, and power generation systems--in virtually every sector of the economy and for a diverse range of businesses, organizations and government. EMCOR represents a rare combination of broad reach with local execution, combining the strength of an industry leader with the knowledge and care of 170 locations.Job Title: -- Security & Compliance ManagerJob Summary: -- This position plans and manages Security Compliance operations for EMCOR Group, Inc. corporate locations. The Security & Compliance Manager provides support and guidance to EMCOR Group HQ locations to ensure compliance with Corporate Security and IT policies and remediation of Security & related IT issues.Essential Duties and Responsibilities: --Include the following. Other responsibilities may be assigned.
  • Responsible for day-to-day IT operations:
  • Oversee network security as established by EMCOR policy.
  • Effectively communicate relevant security and IT systems information to the VP of IT and the VP of Security & Compliance (CISO).
  • Attend regular conference calls with EMCOR IT & Security & Compliance.
  • Responsible for IT Security & Compliance:
  • Ensure compliance with EMCOR security policies and IT Standards and Procedures.
  • Manage Security & Compliance action items daily.
  • Oversee and manage the deployment of IT and Security tools.
  • Communicate & educate employees on IT and Security best practices.
  • Ensure security of data, network access and backup systems.
  • May participate in the IT Infrastructure and Operations:
  • Process of changes effectively, while remaining on the forefront of emerging industry practice and products.
  • Planning for future needs and identify solutions to satisfy needs.
  • Assist in preparation for 1, 3 and 5 year technology plans for the site in conjunction with EMCOR and strategic plans.
  • Review IT asset management program.
  • Test Business Continuity Plan in accordance with EMCOR IT Policies and implement necessary changes as identified.
  • Ensure Compliance with EMCOR Records Retention Policies.
  • Manage sensitive information to the highest level of confidentiality according to EMCOR IT and Security Policies.
  • Monitor compliance with established EMCOR policies and procedures and implement necessary changes as identified.
Qualifications: --
  • Bachelor’s degree in computer science, business, or related field OR equivalent experience and training.
  • Five (5) or more years of technology management experience and/or Security & Compliance in complex IT environments.
  • High-level and working knowledge of technology infrastructure and servers with progressive management expertise to effectively support and maintain an enterprise environment.
  • Remediation of Security & Compliance issues including CVEs, security alerts from monitored systems and compliance with SOPs.
  • EDR monitoring, deployment and support.
  • Experience with MFA, SSO, and other security identity tools such as Entra.
  • Familiarity with CMMC, NIST, ISO 27001 and similar standards.
  • Strong understanding of information security and privacy standards.
  • Understanding of Incident Response processes.
  • Demonstrate ability to develop and cultivate a dynamic and progressive and innovative technology environment.
  • Strong leadership and proactive communication abilities to manage the team and performance levels within the department to maintain excellent service and standards.
  • Skilled in conceptualizing, analyzing, developing and implementing creative solutions to enhance productivity, efficiency and effectiveness of operations, systems and procedures.
  • Strong process and project management skills.
  • Ability to organize, manage, analyze and interpret data.
  • Ability to provide vision and leadership.
  • Superior oral and written communication skills.
  • Personal integrity, emotional intelligence, professionalism and accountability.
  • Excellent interpersonal skills with employees at all levels of the organization to build trust and cooperation.
  • Dynamic, self-driven, proactive and decisive.
  • Adapts well to and initiates changes in the organization.
Work ScopeThe Security & Compliance Manager will operate independently and exercise advanced discretion and judgement with both macro and micro level responsibilities. This is a hands-on role that includes oversite, investigation and resolution of end user security questions and issues, customer service, infrastructure management including security, and recovery strategies and strategic planning. The work scope will require the Security & Compliance Manager to be involved in internal service management, including coordination between EMCOR IT, outsourced IT, Segment Security & Compliance and internal clients. The Security & Compliance Manager is responsible for managing and keeping confidential highly sensitive information.Preferred Technical Experience
  • Windows Server 2016 +
  • Active Directory Domain Services
  • Incident and Event Management (SIEM)
  • Immutable backup
  • Azure/Microsoft 365
  • InTune/Autopilot
  • Endpoint Detection and Response (EDR)
  • Deception Tools
  • Vulnerability Management
Accountability and Measurement
  • Partner with Executive Management to implement new processes and ensure a secure, productive, up-time working environment.
Notice to prospective employees: There have been fraudulent postings and emails regarding job openings. EMCOR Group and its companies . Please check our available positions to confirm that a post or email is genuine.EMCOR Group and its companies do not reach out to individuals to help with marketing or other similar services. If an individual is contacted for services outside of EMCOR’s normal application process – it is probably fraudulent.As a leading provider of mechanical and electrical construction, facilities services, and energy infrastructure, we offer employees a competitive salary and benefits package and we are always looking for individuals with the talent and skills required to contribute to our continued growth and success. Equal Opportunity Employer/Veterans/DisabledCompensation Range: $150,000 - $166,000This position is bonus eligible.Benefits: We are committed to providing employees a comprehensive benefits package which includes medical, dental, and vision coverage, along with health savings and flexible spending accounts, life insurance, disability, a 401(k) Savings Plan, College Coach and employee assistance program.#emcor#LI-MJ1Education : BachelorsExperience : 5 years: Five (5) or more years of technology management experience and/or Security & Compliance in complex IT environments
0 years: High-level and working knowledge of technology infrastructure and servers with progressive management expertise to effectively support and maintain an enterprise environment.
0 years: Remediation of Security & Compliance issues including CVEs, security alerts from monitored systems and compliance with SOPs.
0 years: EDR monitoring, deployment and support.
0 years: Experience with MFA, SSO, and other security identity tools such as Entra.
0 years: Familiarity with CMMC, NIST, ISO 27001 and similar standards.
0 years: Understanding of Incident Response processes.

S.A. Comunale