Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Director Of Cyber Security & Network Operations

Expired Job

EQT Corporation Pittsburgh , PA 15201

Posted 2 months ago

The Director of Cyber Security & Network Operations will be responsible for the support and operations of systems, processes and technologies that comprise EQT's Corporate and Industrial Control Systems (ICS) networks and for the Cyber Security management program that will help ensure that EQT's information assets are adequately protected.

Duties will include identifying, evaluating and reporting on IT security risks in a manner that meets management's requirements as well as compliance and regulatory requirements while aligning with the risk posture of the enterprise. The successful candidate will proactively work with business units to implement practices that meet defined objectives, policies and standards for information security and will handle the oversight of a variety of IT-related risk management activities.

As leader of the Cybersecurity program, the successful candidate will coordinate resources, while maintaining objectivity and a strong understanding that cyber security is just one of the business's activities. A key element of this position will be partnering with management to determine acceptable levels of risk for the organization.

This individual will also be responsible for leading the Network Operations team, who maintains our network, performs enhancements and upgrades, manages and maintains switches, routers, and firewalls, and works with a diverse team of business IT analysts on new application deployments.

Key responsibilities will include:

  • Lead and mentor the Manager of Network Operations by providing direction for planning, designing, and implementing Corporate Network solutions and ICS systems and services.

  • Works with internal business units to identify opportunities to improve business processes through the application of ICS technologies

  • Assures proper installation, operation, maintenance and upgrade of company Corporate and ICS networks.

  • Establishing the vision and implementation roadmap for the EQT Network and Cybersecurity Operations Center (NOC/SOC)

  • Developing, implementing and monitoring a strategic, comprehensive enterprise Cybersecurity and IT risk management program to ensure that the integrity, confidentiality and availability of information owned, controlled and processed by the organization.

  • Providing regular reporting on the current status of the information security program to Senior Business leaders and the Board of Directors as part of the enterprise risk management program.

  • Managing the enterprise's information security organization, consisting of direct reports and indirect reports (such as individuals in Operational Technology (OT), Industrial Control Systems (ICS) operations and IT operations).

  • Developing, maintaining and publishing information security policies, standards and guidelines.

  • Managing security incidents and events.

  • Monitoring the external threat environment for emerging threats and liaising with external agencies, such as law enforcement or other advisory bodies.

  • Creating and managing information security and cyber risk management awareness training programs for employees, contractors and approved third-party system users.

  • Developing and enhancing an information security management framework leveraging the following: COBIT/Risk IT and National Institute of Standards and Technology (NIST), Oil and Gas Cybersecurity Capability Maturity Model (ONG-C2M2)

  • Creating and managing a unified and flexible control framework to integrate and ever-changing requirements resulting from current laws, standards and regulations.

  • Supporting the organization in the creation of a framework for roles and responsibilities with regard to information ownership, classification, retention, privacy and protection.

  • Providing strategic risk guidance for IT projects, including the evaluation and recommendation of security architecture and controls.

  • Facilitating the information security risk assessment, including the reporting and oversight of remediation.

  • Influencing disaster / cyber recovery policies and standards to align cyber security program goals. Coordinating the development of implementation plans and procedures to ensure that cyber security services are recovered in the event of a security event.

  • Facilitating a metrics and reporting framework to measure the efficiency and effectiveness of the program.

Required qualifications:

  • Bachelor's degree in Information Technology (IT), Computer Science, Business Administration or equivalent experience.

  • Minimum of 15 years of experience in a combination of information / cyber security, IT and/or IT risk management related positions. At least 10 of those years must be in a senior leadership role.

  • Minimum of 8 years of experience in a combination of Network Engineering / Network Operations. At least 3 of those years must be in a Network Operations leadership role.

  • Proven experience in dealing with IT security or IT risk management in the Natural Gas E&P/Midstream industry.

  • Experience developing and executing information security policies and procedures to meet organizational objectives.

Preferred qualifications:

  • Master's degree in IT or an MBA.

  • Excellent analytical skills and experience handling multiple projects under strict timelines. Strong project management skills including financial/budget management, scheduling and resource management.

  • Demonstrated success as the lead security professional at a Fortune 1000 organization.

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.

  • Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard. As well as Oil and Gas, local, state or federal laws, standards and regulations.

  • EOE AA M/F/Vet/Disability

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Security Engineer

Dick's Sporting Goods Inc

Posted 2 weeks ago

VIEW JOBS 11/3/2018 12:00:00 AM 2019-02-01T00:00 The role provides candidate with broad exposure and opportunity to up level the Cybersecurity maturity of multiple lines of business and next generation platforms utilized for ecommerce and brick and mortar retail. First and foremost an ideal candidate must demonstrate high degree of self-initiative and adaptability to lead multiple security work streams in a fast-paced environment. The ideal candidate must possess strong technical background in security threat/risk management, background in secure software development, implementing security best practices in enterprise environments (including Cloud Platform security). Candidate will champion effort to help developers and engineers enhance the company's security engineering and architecture across products, applications, cloud, systems, endpoints, network and infrastructure. Candidate will also partner with DICK'S engineering teams to review security features, assess network designs and recommend configurations for products being deployed DICK'S ecommerce systems. Lastly, the candidate is required to collaborate with stakeholders in peer security and technology groups to strengthen overall security posture. Primary responsibility is to provide security architectural and engineering guidance in the development of secure code to multiple product teams in support of fast paced deployments of code in both on premises and cloud based platforms. Architect, implement, and train dev team on new CI/CD security tooling and processes and assist with product design so as to account for security best practices and remediation strategies Provide expertise and guidance to engineers on Dev-Op's teams regarding application level security, hacker training, and security best practices and considerations. This must include monitoring and alerting as well as incident response knowledge. Offer Dev-Op's teams strong experience in application-level vulnerability testing and code-level security auditing in cloud-based environments to include AWS, Azure, Google Cloud, and Cloud Foundry as part of Pivotal Ensure the entire DSG environment is in compliance with defined regulatory requirements. To that end you will partner with appropriate personnel within DSG internal Audit and IT Security to ensure all compliance related issues are built into the development process, monitored for, and resolved and or mitigated appropriately and within a timely fashion. Provide strong project management and communication skills for the purpose of providing value-add information to management. Bachelor Degree: Engineering/Computer Science 5-7 years Application Security, Cloud-Based Deployments Experience in database technologies e.g. SQL, DB2, Oracle Dick's Sporting Goods Inc Pittsburgh PA

Director Of Cyber Security & Network Operations

Expired Job

EQT Corporation