Cybersecurity Director

Cybersecurity Director Job Summary

Marshwinds International Incorporated is seeking a highly skilled Cybersecurity Director to lead our organization's cybersecurity efforts. The successful candidate will have a strong technical background, excellent leadership skills, and a proactive approach to cybersecurity management.

Key Responsibilities:

• Lead the delivery of Cybersecurity Roadmap initiatives through collaboration with internal IT and external managed services partnership.
• Oversee the development and execution of Incident Response Plan (IRP), ensuring swift and effective response to security events and incidents.
• Manage endpoint and network security environments, including overall health, policy modifications, troubleshooting/resolving issues, and producing monthly health metrics for workstations, servers, and identities.
• Analyze and resolve security events/alerts, including monitoring and management of the SIEM platform, managing the logging health of various log sources, and collaborating with Risk Management, Regulatory Compliance, and IT on reviewing and updating Cybersecurity policies, controls, and procedures that support NIST compliance.
• Manage vendor for Penetration Testing for both external network infrastructure, web applications, and API endpoints.
• Support and manage the vulnerability management platforms for infrastructure and application scanning, including development and maintenance of scanning policies, onboarding assets, reporting, validation and false positive research, remediation tracking, and process improvement.
• Supporting PCI, SOC1/2, HIPAA, and client security assessments, including gathering, uploading, and reviewing evidence.

Requirements:

• Bachelor's degree with at least 10 years of industry experience in Information Security and Cybersecurity, and minimum 5 years in a leadership role.
• Strong understanding of cybersecurity framework, standards, and best practices.
• Minimum working knowledge of Incident response, Penetration testing, Vulnerability management, SIEM/log analysis, Network security, Endpoint security, Active Directory, Windows/Linux security, Email security, DLP concepts, and Familiar with NIST Cybersecurity Framework and mapping of internal controls to support NIST compliance.
• Familiar with endpoint security products and concepts, exposure to adjacent technology domains such as cloud, network infrastructure, audit & compliance, and DevSecOps.
• Strong knowledge of Information Security / Cybersecurity related technologies, processes, and tools.
• Working knowledge of Office 365 security concepts, policies, settings, alerting, audit logging, security and compliance center, cloud app security is required.
• Staying up to date on recent threats, security tools, and concepts is required.
• Experience with network security concepts and products, familiar with security monitoring, analysis, and resolution of security events/alarms, familiar with identity and access management concepts, and familiar with SOC1/2, PCI, HIPAA, CCPA/GDPR or related security frameworks.
• Familiar with application-level security framework and hands-on experience mitigating application vulnerabilities and threats.
• Strong analytical and problem-solving skills, strong Windows Active Directory and Networking experience a plus, security-focused degree and/or certifications a plus.