Responsibilities

• Research the latest information technology security trends, to keep current and promote use of the latest technology and approaches to protect our information and information assets.
• Create recommendations for Information Technology and company-wide best practices.
• Coordinate/Conduct regular simulated cyber-attacks and penetration testing to look for vulnerabilities in the computer systems and work to resolve deficiencies before exploitation.
• Tracking known cyber vulnerabilities. Coordinate investigation and response, following them to completion and ensuring all are properly documented and closed out.
• Assist in system monitoring and remediation to manage security alerts and identify/reduce false positives.
• Develop and update cyber security related strategies and approaches including a cybersecurity breach contingency and recovery plan.
• Coordinate with external entities on information sharing, inquiries, and critical cyber matters.
• Work with other IT Security team members to share information and promote a secure and proactive IT security environment.
• Work with emergency management and COOP Planners to ensure that the Information Technology’s recovery plan is fully coordinated with the COOP and emergency plans.
• Investigate and document security breaches and other cybersecurity incidents including assessing damage potential.
• Perform or support efforts on computer forensics as needed.
• Implement and maintain vendor supplied security hardware components & software packages.
• Perform diagnostics for security problems and identify and analyze security risks.
• Coordinate security assessments with internal audit and external vendors.
• Assist in developing security awareness and training programs for IT and employees who work with sensitive data.
• Create and manage Cyber Security policies, standards, procedures, and guidelines.
• Plan and organize work efforts. Report status and progress on efforts to management as necessary.
• Other related security duties as assigned.

Knowledge, Skills, & Abilities

• Knowledge of NIST Cyber Security Framework.
• Experience with network and application security including firewalls, VLANs, routers, switches, Linux, Microsoft Windows and VMware operating systems, Oracle and Microsoft SQL Server databases, SEIM tools and Endpoint security software.
• Familiarity with ecommerce concepts, implementation, and payment card industry (PCI) standards
• Experience performing penetration testing, tracking, and closure of issues.
• Experience setting up firewall rules.
• Experience performing computer forensics.
• Experience with designing, implementing and managing an enterprise-wide security program.
• Experience working with outside vendors to coordinate testing and resolution of security vulnerabilities.
• Experience writing recovery plans, updating policies/procedures and documenting security breaches.
• Ability to efficiently and effectively communicate technical information to colleagues and management.
• Ability to manage time efficiently and multitask when appropriate in potentially high demand scenarios.
• Ability to solve problems and provide solutions that are technically, financially, and administratively responsible.
• Ability to provide competent, realistic estimates for cost, effort, and time requirements for assigned initiatives.
• Completion of one of the following recognized professional certifications: QSA (Qualified Security Assessor), CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional), SSCP (Systems Security Certified Practitioner), Certified Ethical Hacker (CEH)
• Technical Expertise: Cisco Firepower, Cisco SecureX, Cisco AMP for Endpoints, Cisco StealthWatch, Splunk, RedHat Linux, Microsoft Windows Server, VMware, Citrix