Director of Cyber Security
2 months ago
About
The Director, Cybersecurity reports to the Chief Information Officer with a dotted line to the Chief Compliance Officer. This role is pivotal in leading the Cybersecurity Program to protect our organization’s critical information assets through NIST Cybersecurity Framework and practices, ensure regulatory compliance, and help organization become more proactive in addressing vulnerabilities and risks. As the internal expert in the field of information security and cybersecurity, the Director, Cybersecurity has the overall accountability of establishing, monitoring, managing, and maintaining the technologies and processes used to secure company information systems, networks and data, in close collaboration with IT, Regulatory Compliance, Risk Management and strategic managed services partners.
The successful candidate will have a strong technical background, excellent leadership skills, and a proactive approach to Cybersecurity management. Focus areas will include managing security requests, investigating, and responding to alerts and incident tickets, developing and maintaining security documentation, network and endpoint security management, vulnerability management, identity and access management, incident response, SIEM and log management, cloud security operations, overall security monitoring and reporting. Additionally, the candidate will be responsible for contributing to internal control testing related to client and regulatory audits (e.g. PCI, HIPAA, SOC1/2) by gathering and submitting proper technical evidence based on control testing needs and ensuring controls tests are completed comprehensively and on time.
This position collaborates with key internal/external stakeholders, and the executive leadership in responding to and managing all security events and incidents to ensure the protection of company and client assets across the business.
Primary Responsibilities and Duties:
Lead the delivery of Cybersecurity Roadmap initiatives, through collaboration with internal IT and external managed services partnership.
Oversee the development and execution of Incident Response Plan (IRP), ensuring swift and effective response to security events and incidents. Coordinate with internal stakeholders and external partners during forensic investigation.
Manage endpoint and network security environments including overall health, policy modifications, troubleshooting/resolving issues and producing monthly health metrics for workstations, servers, and identities.
Analyze and resolve security events/alerts Including:
monitoring and management of the SIEM platform
managing the logging health of various log sources (e.g., Windows and Linux systems, cloud infrastructure and services, and network and security infrastructure).
Collaborate with Risk Management, Regulatory Compliance and IT on reviewing and updating Cybersecurity policies, controls and procedures that support NIST compliance, and monthly Cybersecurity Dashboard updates.
Manage vendor for Penetration Testing for both external network infrastructure, web applications and API endpoints.
Support and manage the vulnerability management platforms for infrastructure and application scanning. Including:
development and maintenance of scanning policies
onboarding assets
reporting
validation and false positive research
remediation tracking
process improvement
Supporting PCI, SOC1/2, HIPAA, and client security assessments. Includes gathering, uploading, and reviewing evidence.
Minimum Education and/or Experience Requirements:
Bachelor’s degree with at least 10 years of industry experience in Information Security and Cybersecurity, and minimum 5 years in a leadership role.
Strong understanding of cybersecurity framework, standards, and best practices.
Required Knowledge, Skills and Abilities:
Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools.
Working knowledge of Office 365 security concepts, policies, settings, alerting, audit logging, security and compliance center, cloud app security is required.
Staying up to date on recent threats (e.g., OWASP Top 10), security tools and concepts is required.
Experience with network security concepts and products (e.g., Cisco/Barracuda firewalls and Intrusion Prevention Systems, email security, and Web Application Firewall (WAF), with working knowledge on Akamai/Cloudflare a plus.
Familiar with security monitoring (SIEM), analysis and resolution of security events/alarms (working knowledge with Google Chronicle a plus).
Familiar with identity and access management concepts (e.g., Azure Active Directory, OKTA MFA, SSO).
Familiar with SOC1/2, PCI, HIPAA, CCPA/GDPR or related security frameworks.
Familiar with application-level security framework and hands on experience mitigating application vulnerabilities and threats, such as SQL injection and cross-site scripting.
Strong analytical and problem-solving skills
Strong Windows Active Directory and Networking experience a plus
Security focused degree and/or certifications a plus (e.g., CISSP, CISM, CISA)
This position is required to ensure compliance with all legal, ethical and regulatory standards for employment actions. Judgment is exercised to determine when items need to be escalated to management for approval or resolution.
-
Director of Cyber Security
2 months ago
Parsippany, United States Visionet Systems Inc. Full timeAboutThe Director, Cybersecurity reports to the Chief Information Officer with a dotted line to the Chief Compliance Officer. This role is pivotal in leading the Cybersecurity Program to protect our organization’s critical information assets through NIST Cybersecurity Framework and practices, ensure regulatory compliance, and help organization become more...
-
Cyber Security Engineer
3 months ago
Troy, United States Talent Source, Inc. Full timeJob DescriptionJob DescriptionMissionThe CyberSecurity Engineer develops expertise around Cyber Security in order to feed Groupsystem standards, methodology and tool strategy. The role of CyberSecurity Engineer is defined for a system or a component project having at least one cybersecurity requirement where the cybersecurity process must be applied and to...
-
Permanent Sr. Cyber Security Analyst
3 weeks ago
Troy, United States Softworld, a Kelly Company Full timePermanent Sr. Cyber Security AnalystLocation: Troy, MISUMMARYThe Senior Cyber Security Analyst will protect the organization from cyber-attacks by monitoring the information technology systems and evaluating threats as they arise. The role will also support in the implementation and management of cyber security program, data loss prevention, vulnerability...
-
Director of Security
2 months ago
Parsippany-Troy Hills, United States Marshwinds International Incorporated Full timeThe Director, Cybersecurity reports to the Chief Information Officer with a dotted line to the Chief Compliance Officer. This role is pivotal in leading the Cybersecurity Program to protect our organization’s critical information assets through NIST Cybersecurity Framework and practices, ensure regulatory compliance, and help organization become more...
-
Cyber Security Solutions Architect
1 week ago
Auburn Hills, Michigan, United States Marvel Technologies Inc Full timePosition: Cyber Security Architect Company: Marvel Technologies, Inc. Role Overview: We are in search of a skilled Cyber Security Architect to lead the design, implementation, and ongoing management of our cyber security framework. The ideal candidate will possess a robust understanding of cyber security methodologies, technologies, and industry best...
-
Cyber Security Professional
8 hours ago
Hanover Hills, Maryland, United States Lockheed Martin Full timeAbout the Role:This position may be eligible for a $25K sign on bonus for external hiresWhat We Do:At Lockheed Martin, our Cyber & Intelligence team invites you to join us in protecting the networks that our citizens and the world depend upon every minute. We're talking about financial assets, healthcare information, critical infrastructure, and the...
-
Sr Cyber Security Architect
2 weeks ago
Auburn Hills, United States Atem Corp Full timeJob DescriptionJob DescriptionSenior Cyber Security ArchitectPosition is onsite from day onwardsLocation: Auburn Hills MISeeking a highly skilled and experienced Senior Cyber Security Architect to join our team.The ideal candidate will have a strong background in enterprise applications, with a special focus on Platforms and APIs. This role requires a...
-
Senior Cyber Security Architect
2 days ago
Auburn Hills, Michigan, United States ALTA IT Services Full timeJob Summary:ALTA IT Services is seeking a highly skilled and experienced Senior Cyber Security Architect to support a leading automobile OEM. This position will be responsible for designing and implementing robust security solutions across our organization's technology landscape.Key Responsibilities:Lead the design and implementation of security...
-
Director of Security
2 months ago
Parsippany, United States Marshwinds International Incorporated Full timeThe Director, Cybersecurity reports to the Chief Information Officer with a dotted line to the Chief Compliance Officer. This role is pivotal in leading the Cybersecurity Program to protect our organization’s critical information assets through NIST Cybersecurity Framework and practices, ensure regulatory compliance, and help organization become more...
-
Sr. Systems Engineer
1 month ago
Beverly Hills, United States House of Blues Full timeJob Summary: WHO ARE WE? Live Nation Entertainment is the world’s leading live entertainment company, comprised of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. Ticketmaster is the global leader in event ticketing with over 550 million tickets sold annually and more than 12,000 clients worldwide. Live...
-
Cyber Security Systems Engineer Staff
1 day ago
Hanover Hills, Maryland, United States Lockheed Martin Full timeAbout the RoleJob Summary:We are seeking a highly skilled Cyber Security Systems Engineer Staff to join our team at Lockheed Martin. As a key member of our Cyber & Intelligence team, you will play a critical role in protecting our nation's networks and systems from cyber threats.Key ResponsibilitiesManage system requirements and derived requirements to...
-
Classified Cyber Security
4 weeks ago
Troy, United States Lockheed Martin Full timeDescription:Lockheed Martin's Missiles and Fire Control (MFC) business, the leading provider and pioneer for exceptional weapon systems, sensors, and services is seeking a classified Cyber Security Associate/Information System Security Officer (ISSO) to join the security team in Troy, AL. The candidate will perform classified cybersecurity duties supporting...
-
Director, IT Security and Risk Management
2 days ago
Troy, Michigan, United States Flagstar Bank Full timeJob SummaryFlagstar Bank is seeking a highly experienced Director, IT Security and Risk Management to lead the development and implementation of a comprehensive IT risk management program. This role will be responsible for driving the identification, assessment, and prioritization of existing and emerging IT risks across the organization.Key...
-
Information Technology Security Analyst
1 month ago
Parsippany-Troy Hills, United States Robert Half Full timeDoes this sound like something you’d be interested in hearing more about?Title: IT Security AnalystSalary: $80-$90k plus benefits, etc (Based on Experience)Location: Parsippany, NJ (Onsite for the first 6 months – then moves to a Hybrid work model)Industry: Medical** US Citizen or Permanent Green Card holder only please ***** Local candidates only...
-
Cyber Systems Administrator Sr
3 weeks ago
Troy, Michigan, United States Lockheed Martin Full timeJob ID: 673812BRDate posted: Aug. 20, 2024Description:What We're DoingAre you ready to invent the future? At Lockheed Martin, we're embarking on a transformative journey to harness data, modernize processes, and advance technology to uphold our leadership in Aerospace and Defense. By leveraging emerging, digitally-enabled capabilities, we aim to reduce...
-
Cyber Security Analyst
1 week ago
Troy, United States Venteon Full timeThe IT Security Analyst will play a critical role in safeguarding the organization's information systems by monitoring, analyzing, and responding to security incidents. The role requires working in a small to mid-sized company environment, where adaptability and hands-on experience are key.Key Responsibilities:Monitor and review security alerts and logs from...
-
Cyber Security Analyst
4 days ago
Troy, United States Venteon Full timeThe IT Security Analyst will play a critical role in safeguarding the organization's information systems by monitoring, analyzing, and responding to security incidents. The role requires working in a small to mid-sized company environment, where adaptability and hands-on experience are key.Key Responsibilities:Monitor and review security alerts and logs from...
-
Cyber Security Analyst
1 month ago
Troy, United States Venteon Full timeThe IT Security Analyst will play a critical role in safeguarding the organization's information systems by monitoring, analyzing, and responding to security incidents. The role requires working in a small to mid-sized company environment, where adaptability and hands-on experience are key.Key Responsibilities:Monitor and review security alerts and logs from...
-
Business Practices Director
1 week ago
Bloomfield Hills, United States Jewish Federation of Detroit Full timeJob DescriptionJob DescriptionThe Business Practices Director is responsible for assuring a best practices business environment for the Jewish Federation and its 16 local agencies. The Director will review the agencies’ financial reports and internal controls, and identify and resolve any potential areas of concern. DUTIES AND RESPONSIBILITIES:• ...
-
Director, Business Practices
7 days ago
Bloomfield Hills, United States Jewish Federation of Detroit Full timeJob DescriptionJob DescriptionThe Director, Business Practices is responsible for assuring a best practices business environment for the Jewish Federation and its 16 local agencies. The Director will review the agencies’ financial reports and internal controls, and identify and resolve any potential areas of concern. DUTIES AND RESPONSIBILITIES:• ...