Director, Cybersecurity Operations & Engineering

Securus Technologies Carrollton , TX 75011

Posted 3 weeks ago

Overview

Welcome to Aventiv Technologies. Please watch this brief video to find out if this is the place you want to be!

https://vimeo.com/391578629/5ba31cc5e9

Job Purpose:

Protects the availability, confidentiality and integrity of enterprise information systems and data. Managing a team of cybersecurity operations, engineering professionals, this position will be responsible for implementing and operating information security technology and process initiatives across the organization. Collaborates with multiple stakeholders on various security initiatives, have oversight and responsibility for engineering functions for security products and services along with operational responsibilities.

Responsibilities

Essential Duties:

  • Manage the Information Security Engineering, SOC and CIRT teams, including recruiting, hiring, and retention of highly qualified cybersecurity and information security professionals.

  • Responsible for the technical oversight for the implementation and operation of cybersecurity and information security tools, technologies, solutions and methodologies

  • Align to the NIST Cybersecurity framework as it relates to direct departmental responsibilities

  • Establish clear objectives and milestones, driving the team to meet deadlines.

  • Development and/or augment policies /procedures

  • Ensure that sensitive data is protected from unauthorized modification, destruction and disclosure.

  • Coordinate bid process for all projects requiring security infrastructure and participate in the purchasing process.

  • Collaborate with external vendors to procure best cost for maintenance renewal and new engagements.

  • Oversee Change Management process as it relates to operations and infrastructure.

  • Ensure information security requirements are correctly configured for new product implementations.

  • Coordinate multiple activities and milestones to align with the overall product roadmap, ensuring that security is at the forefront and provide measurements on program effectiveness to the business

  • Responsible for the Security Operations Center to ensure security tools are effectively utilized and operating, identify gaps in process or procedure and implement new solutions accordingly.

  • Prepare presentations that provide detailed project status and outage timelines to present to executives.

  • Manage department budget and maintain separation of capital vs. SGA expenditures.

  • Provide leadership a clear, concise communication during system outages or support engagements.

  • Lead research, evaluation and implementation of technical security controls.

  • Act as primary contact for security related anomalies and provide information security guidance as a subject matter expert.

  • Work with management, engineers and technicians to set project objectives, priorities and deliverables.

  • Identify project roadblocks and work with management and team members to resolve them.

  • Manage projects internally and effectively schedule resources for timely project deadlines.

  • Perform other duties as assigned.

Knowledge, Skills, and Abilities:

  • Expert understanding of current and emerging cybersecurity and information security principles, methodologies, requirements, tools and solutions.

  • Knowledge and solid understanding of security industry best practices.

  • Exceptional communication skills and the ability to interface with all levels of management.

  • Outstanding documentation skills, analytical skills, organizational skills and be detail oriented.

  • Ability to work in a fast-paced environment meeting and exceeding the needs of our customers.

  • Must be able to "drive" tasks to completion.

  • Must have the ability to create, understand and conform to project schedules.

  • Strong working expertise with information security, Compliance & IT Management Standards (PCI/DSS, SOX, FedRAMP, HIPAA, etc).

Qualifications

Minimum Qualifications:

  • Bachelor degree in computer related field or equivalent demonstrated work experience and industry standard certifications.

  • 10+ years working in large corporate IT environments.

  • 5+ years managing an information security team in a large corporate environment.

  • 5+ years' experience managing software and hardware installations on a large scale.

  • 5 + years' experience working in a data center environment with stringent Change Control processes.

  • Security related certification required (Security+, CISSP, CISA, CRISC, GIAC, CISM, CEH, etc.)

Preferred Qualifications:

  • 10+ years experience in management role and 5+ years managing an information security team.

  • Bachelor's degree in Information Technology or Computer Science

  • Multiple Information Technology related certifications (MCSE, MCSA, CCNA, CCNP, Security+, CISSP, CISM, CEH, etc.)

Physical Demands:

Standing, sitting, walking, speaking, listening, bending, reaching, pushing, pulling, lifting, grasping and manipulating tools, typing, using peripheral computer tools. May be required to lift up to 25 pounds.

Privacy Notice for Applicants:

www.aventiv.com/privacy

Equal Employment Policy:

The Company's policy is to provide equal employment opportunity to all individuals in all of its employment programs and decisions. Securus Technologies, Inc., and its Subsidiaries will not discriminate against any associate or qualified job applicant with respect to any terms, privileges, or conditions of employment because of that person's race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic or status protected under local, state or federal law, ordinance or regulation.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Analyst II

Securus Technologies

Posted 4 days ago

VIEW JOBS 5/21/2020 12:00:00 AM 2020-08-19T00:00 Overview Welcome to Aventiv Technologies. Please watch this brief video to find out if this is the place you want to be! https://vimeo.com/391578629/5ba31cc5e9 Job Purpose: Responsible for reviewing system logs compiled from SIEM, IDS, and DLP systems, developing and documenting baselines used to quickly identify anomalous behavior within the environment, identifying, researching, and responding to alerts from monitoring systems in order to remediate threats, supporting data collections for SOX, PCI, FedRAMP, CJIS, and other regulations, researching compliance controls, documenting and reviewing standard procedures and reviewing and documenting access request changes. Responsibilities Essential Duties: * Must stay up to date on the latest security trends, vulnerabilities, privacy legislation, and news items and communicate new finding with other team members. * Documents policies, procedures and standards based upon guidance from Corporate Security Management. * Recommends changes in security policies and practices in accordance with changes in law or financial sector security practices. * Ensures that data is protected from unauthorized modification, destruction, and disclosure. * System Auditing and monitoring of critical security systems: IPS/IDS, Event Logs, AV logs, Web Logs. * Perform risk assessments and test security controls and systems, including working with process owners to define remediation plans. * Respond to critical computer security incidents by collecting, analyzing and preserving digital evidence. * Answer user questions related to security technology and advise on the security impact of technical changes. * Ensure that security policies are applied and maintained for network devices, remote access devices, firewalls, servers, and workstations. * Research mechanisms and tools for control compliance. * Conduct periodic audits of business entities to ensure continued compliance. * Continuous monitoring and research of real time alerts. * DLP and IDS administration. * Track and report of policy violations. * Collaborate with other departments within Securus to ensure the timely delivery of audit materials on a weekly, monthly, quarterly, and annual basis. * Manage repository for control documentation and update documents as needed. * Perform internal control testing to validate design and operating effectiveness and document results in the repository on a timely basis. * Participate in post-mortem reviews and ensure lessons learned are integrated into the regulatory compliance process. * Assist Information Security Supervisor with Security related projects as necessary. Knowledge, Skills, and Abilities: * Ability to manage changing workloads while maintaining a sense of priorities and delivering quality service within required timeframes * Ability to learn new technologies and applications and apply that knowledge to daily workflows * Attention to detail, organized and able to work and research independently. * Demonstrated adaptability, analytical and problem solving ability. * Ability to work with urgent deadlines. * Advanced Microsoft Office skills - Excel, Outlook, Word. Qualifications Minimum Qualifications: * 3+ years in an Information Security role. * Information Security certification required. Security certifications may include, but not be limited to CISSP, CISA, CISM, GSEC, Security+, and CEH * Experience in the majority of the following areas * Firewalls, IDS/IPS, VPN, and other network security components from an evaluation, deployment assessment, and audit perspective. * Working knowledge of network infrastructure and security monitoring tools. * Experience with threat assessment, vulnerability analysis, risk assessment, information gathering, correlating and reporting * Ability to identify and recommend mitigations for vulnerabilities and exploits. * Expert knowledge and experience with Anti-Virus/Anti-malware products. * Experience with Information Security principals and activities Preferred Qualifications: * Experience with Linux, Windows, Active Directory security configuration and design, monitoring/alerting, intrusion detection, encryption, vulnerability management, database security, and wireless network security. * System administration experience. * Experience with various standards (PCI/DSS, SOX, FedRAMP HIPAA, CJIS etc.) * Project Management certifications. * Experience with Information Technology departments in mid to large organizations. * Experience with McAfee DLP and ePolicy Orchestrator. Physical Requirements: Standing, sitting, walking, speaking, listening, bending, reaching, pushing, pulling, lifting, grasping and manipulating tools, typing, using peripheral computer tools. May be required to lift up to 25 pounds. Privacy Notice for Applicants: www.aventiv.com/privacy Equal Employment Policy: The Company's policy is to provide equal employment opportunity to all individuals in all of its employment programs and decisions. Securus Technologies, Inc., and its Subsidiaries will not discriminate against any associate or qualified job applicant with respect to any terms, privileges, or conditions of employment because of that person's race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic or status protected under local, state or federal law, ordinance or regulation. Securus Technologies Carrollton TX

Director, Cybersecurity Operations & Engineering

Securus Technologies