Manager, Cybersecurity Engineering

Manager, Cybersecurity Engineering:

The Manager oversees a team of Cybersecurity Analysts and works with IT and Business Leadership to shape and advance our Cybersecurity & Assurance strategy. Responsibilities include developing standards, educating employees, and ensuring practices that safeguard the organization and align with strategic goals.

In this role you will…

• Manage a team of Cybersecurity analysts.
• Create and maintain security policies, controls, and incident response plans.
• Create and access policies and oversee identity and access management.
• Design, develop, coordinate, and document the secure operation of information systems and develop best practices for securing enterprise-wide data and information systems.
• Define, scope and drive cloud security initiatives to ensure we can continue to secure all-important and sensitive data across our fast-growing organization.
• Participate in architecture and design reviews with development/DevOps staff to incorporate effective security standards into design
  Proactively monitor security levels of cloud environments (AWS, GCP), IT systems and establish baseline security models including patching, vulnerabilities, CIS, and endpoint controls.
• Working with Enterprise Architects and other functional area architects and security engineers to ensure adequate security solutions are in place throughout all CSOD systems and platforms to mitigate identified risks sufficiently and support business objectives.
• Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.
• Evaluate and respond to global information technology security threats in relation to systems and recommend security changes in response to emergent threats.
• Ensure compliance with changing laws and regulations.
• Ensure cybersecurity policies, procedures, and best practices are kept up-to-date and communicated to all personnel and that compliance is enforced.
• Schedule and oversee periodic security audits.
• Maintain a current understanding of the IT threat landscape for the industry.
• Constantly update the cybersecurity strategy to leverage AI, new technology and threat information.
• Brief senior management on status and risks, including championing the overall strategy and necessary budget.

You have what it takes if you have…

• Bachelor's degree or similar level college education in Business, Technology or related field.
• 8+ years of relevant work experience including proven ability to successfully lead and oversee critical projects and cross functional efforts.
• Strong working knowledge and understanding of key concepts in Cybersecurity and Assurance.
• Successful regular exposure to Director and VP levels within IT and the Business.
• Understanding of corporate Governance, Risk, and Compliance functions.
• Consistently demonstrated growth in their own skills & leadership.
• 8+ years of experience with information and network security and vulnerability management, with increasing leadership responsibilities.
• Broad knowledge and hands-on experience with cybersecurity technologies and solutions such as IAM, IDS/IPS, SIEM, UTM, Firewalls, EDR, DNS protection, and VPN technologies.
• Experience with regulatory compliance, including SOX, GDPR and HIPAA, and familiarity with well-established security standards and frameworks such as SOC, ISO 27001, NIST SP 800-53 and COBIT.
• History running and participating in incident response procedures and table-top exercises.
• Experience with Mobile Device Management and security.
• Understands security challenges associated with remote workers.Experience with endpoint protection and management components for both macOS and Windows.
• Understands common threat vectors applicable to the corporate environment including phishing.
• Experience with designing and running security awareness campaigns and initiatives.
• Familiarity with network administration and visibility concepts and tools.
• Excellent written and verbal communications skills, with demonstrated ability to present to both technical and non-technical audiences.
• Extensive experience with automating security logging and monitoring systems and log analysis tools.
• Must be proactive, self-starting and intrinsically motivated.
• Demonstrated commitment to valuing diversity and contributing to an inclusive working and learning environment.
• Consideration of privacy and security obligations.

#LI-Onsite

Our Culture:

Spark Greatness. Shatter Boundaries. Share Success. Are you ready? Because here, right now – is where the future of work is happening. Where curious disruptors and change innovators like you are helping communities and customers enable everyone – anywhere – to learn, grow and advance. To be better tomorrow than they are today.

Who We Are:

Cornerstone powers the potential of organizations and their people to thrive in a changing world. Cornerstone Galaxy, the complete AI-powered workforce agility platform, meets organizations where they are. With Galaxy, organizations can identify skills gaps and development opportunities, retain and engage top talent, and provide multimodal learning experiences to meet the diverse needs of the modern workforce. More than 7,000 organizations and 100 million+ users in 180+ countries and in nearly 50 languages use Cornerstone Galaxy to build high-performing, future-ready organizations and people today.

Check us out on LinkedIn, Comparably, Glassdoor, and Facebook!