Cybersecurity Manager
Shared Service Center
- Richardson, TX
- Permanent
- Full-time
- Structured Career Path for growth and advancement
- Gas Discount
- Medical, dental, vision, disability, FSAs, and life insurance
- Paid Time Off
- 401K
- Pet Insurance
- Legal & Identity Theft Protection
- Employee Assistance Program
- Employee Referral Program
- 5-day work week
- And so much more…
- Supports the development, implementation, monitoring and communication of the cybersecurity program and related activities.
- Designs, develops and tests cybersecurity features, as microservices and cross platform shareable components with high quality design
- Designs, implements, and maintains cybersecurity policies and procedures such as data access controls, acceptable use of technology, password management, and incident reporting procedures
- Translates technical cybersecurity requirements into clear, actionable policies that employees can understand and follow
- Monitors and audits compliance of cybersecurity policies to identify gaps
- Reviews existing cybersecurity policies, post security incidents to identify improvements
- Manages multi-functional team coordination, opportunity screening, benefit/cost analysis, vendor selection, schedule and budget oversight, management of consultants/contractors, issue resolution, and reporting.
- Coordinates with internal legal, contracting, procurement, finance, and communications departments to ensure successful project rollout and streamline communications.
- Presents cybersecurity program status reports to senior management
- Performs review and validation of all deliverables for SOC, Incident Response (IR), Threat Intelligence, Threat Hunting, and other customer-assigned activities
- Provides metrics and artifacts supporting audit activities
- Performs cybersecurity operations management and project management
- Ensures project-defined deliverables are provided on time and quality reviewed (e.g., SOPs, Configuration Guides, Training Documentation, Project Schedules)
- Provides knowledge and expertise in government regulatory processes and documentation, including but not limited to Risk Management Approach (RMA), National Institute of Standards and Technology (NIST) standards, and policies and procedures
- Ensure compliance with all applicable regulatory requirements, such as FTC, PCI-DSS, GLBA and others. Assist in the monitoring and accountability of those not in compliance.
- Develop and update the cybersecurity policy for the organization's cloud computing environment
- Oversees security activities such as access control, incident management, response, forensics, and reporting
- Works with external stakeholders to understand operational needs and develop effective processes
- Maintains a current understanding of industry trends, emerging cyber threats, and new solutions which may have an impact on the environment
- Works with key stakeholders across the organization to ensure that the cybersecurity program aligns with business objectives, mission, and values by developing comprehensive strategies and tactics
- BS or MA in computer science, information security, cybersecurity or a related field
- 3+ years of experience in a cybersecurity, IT audit or enterprise risk management (ERM) role
- 3+ years of experience working with SOC teams
- 3+ years of experience writing PowerShell, Bash/shell scripts
- 3+ years of experience writing/modifying Python/JavaScript
- 3+ years of experience with regulatory compliance and information security management frameworks (e.g., ISO 27000, COBIT, NIST 800, etc.)
- Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP)