Information technology security manager job description

Adaptive Solutions Group is a premier provider of information technology personnel. We provide a variety of technical professionals available for contract, contract to hire, or direct placement positions to companies in and around the Kansas City and St. Louis areas.
We are currently looking for an
IT Security Risk Management Manager
to join our team.


Responsibilities


Maintain an environment where your employees feel included, valued, empowered, and supported. Be responsible for leading, developing and retaining a team of diverse security professionals. Maintain thorough understanding of the company’s security posture, capabilities, risk appetite and stakeholders. Oversee IT security risk management processes and activities. Manage security risks through identification, analysis, treatment, and ongoing governance. Partner with risk owners to influence remediation, overcome roadblocks, and navigate the risk governance processes. Serve as escalation point for the team, proactively addressing roadblocks and helping the team delivery high-quality results. Establish and maintain key performance metrics and monitor to ensure compliance of established standards, processes, and procedures. Prepare and deliver informal and formal presentations to various stakeholders. Protect our customers, our employees, and our brands by incorporating security and compliance in all decisions and daily job responsibilities, following security policies and procedures.



Required Qualifications


Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future 6+ years of related experience (can include any combination of experience in Information Technology, Information Security, and/ or leadership) 2+ years of proven success in managing a technical team, to include performance management, team/ employee development, and hiring Demonstrable aptitude for leadership, collaboration, and relationship management Understanding of security frameworks such as ISO 27001/2, Payment Card Industry Data Security Standard (PCI DSS) and NIST Thorough understanding of the differences between vulnerabilities, threats and controls Exceptional communication and presentation skills Strong time management and organization skills, partnered with strong attention to detail Proactive, with the ability to be flexible and adaptable to changing requirements/ responsibilities, and deliver high quality results Must be able to work independently with a sense of ownership to accomplish department and project tasks Ability to maintain a high degree of confidentiality Must be committed to incorporating security into all decisions and daily job responsibilities



Preferred Qualifications


Bachelor's degree in Computer Science, Computer Information Systems, Management Information Systems, or related field preferred CISSP, CISM or CISA certifications


Adaptive Solutions Group offers a competitive compensation and benefits package that includes medical, dental, STD/LTD, life insurance coverage, 401k, paid vacation and holidays.

Adaptive Solutions Group is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, and veteran or disability status.

Sonoco's Global Information Security organization is a collaborative team focused on protecting Sonoco's data and technology assets from risks and threats, internal and external, while driving transformation into the business use of IT. This is our team mission, and we are passionate how we do it. The Global InfoSec organization provides full-scope information and cyber security services to Sonoco's businesses, and our collective goal is to provide safe, secure, and resilient IT services to our stakeholders.

A key part of achieving that goal is providing a modern and mature security infrastructure and engineering to support capabilities like security operations, risk management, and audit/assessment. Sonoco's InfoSec Engineering works to ensure appropriate configuration, functionality, integration, and data management within Sonoco's security infrastructure and tools. The team must think critically, adapt to changing attack profiles, and deliver timely services.

To achieve this goal, the InfoSec organization is looking for a Manager, IT Security Engineering to drive this capability forward. In this leadership role, you will focus on continued innovation of Sonoco's IT Security strategy and facilitate a best-in-class security infrastructure. The position will be responsible for leading an engineering team that develops, operates, and supports a heterogenous security infrastructure on a global scale for network and endpoints.
Key Responsibilities
Lead a team of security engineering professionals responsible for the planning, design, implementation, attack mitigation and ongoing support of security systems of high complexity to fulfill business needs.Staff and manage the team with appropriate skill levels and customer service ability.Lead and manage projects and resources on initiatives sponsored by this team.Foster collaboration with team members to drive value as well as identify and resolve impediments.Focus on aligning business goals with technology solutions.Work with stakeholders, mentoring and providing technological guidance on network and endpoint security.Manage staff, including selection, goal setting, annual reviews, compensation planning and career development.Provide recommendations to the IT Leadership team to increase effectiveness of organization and technology solutions.Prioritization, planning of projects and features, stakeholder management and tracking of commitments.Supports, implements, and promotes standard configuration and change management, processes, and practices.Identify opportunities to further enhancements and refinements to security standards and processes.Work with vendors and control owners to modify, maintain and govern security controls to address changes in business processes and security standards.Highlight and clearly communicate any risks that an intended solution may pose to the corporate computing environment.Establish documented procedures for executing network and endpoint controls to ensure the controls are working as designed.Perform research, analysis and design of network and endpoint security controls appropriate for the security of data stored or processed in the enterprise computing environment.Participate and evaluate network and endpoint security controls.Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to ensure operational excellence.Benchmark, analyze, report on, and make recommendations for the improvement and growth of the security standards and toolsets.Assist with event and incident remediation, and cybersecurity investigation.Perform other job duties as required.
Qualifications
Bachelor's degree (Eng./CS/etc.) preferred, or equivalent work experience.10+ years in Information Technology and/or IT Security.5+ years in Information Technology and/or IT Security leadership.Experience in leading complex projects globally.Experience in cybersecurity frameworks for IT operations.Experience in delivering large scale, high availability security solutions.Experience in demonstrating strong leadership, self-motivation, and accountability.Ability to be able to work flexible hours as needed.Ability to handle multiple competing priorities in a fast-paced environment.Experience identifying, evaluating, recommending, and implementing processes, procedures, and tools to enhance existing monitoring capabilities and ensure a cycle of continuous improvement.In-depth knowledge of modern security concepts and how to apply them.Ability to work in a team environment.Strong business and technical vision.Ability to maintain in depth knowledge of security and networking infrastructure including the management and reporting of each.
Competencies
Ability to think broadly and strategically, balanced with high attention to detail.Ability to manage staff, including selection, goal setting, annual reviews, and compensation planning and career development.Develop and nurture the security engineering team by motivating and mentoring, and the onboarding of critical talent.Provide recommendations to the IT leadership team to increase effectiveness of organizational and technology controls Experience in Information Security combined with risk analysis, audit, and compliance objectives.Experience working with information security processes in networks, software, and hardware.Understanding of Information Security, Endpoints, and Networking operations, integrations, processes, and management concepts.Ability to make decisions and perform complex problem-solving activities under pressure.High degree of creativity and “out-of-the-box” thinking.Possesses a services and solution orientated approach.Strong writing, communication, and presentation skills.Ability to work on a fast pace, in a rapidly changing global environment.Outstanding organization skills.Takes responsibility and achieves results.

We are an equal opportunity employer, and we strictly prohibit and do not tolerate discrimination against employees, applicants or any other covered persons because of race, color, religion, national origin or ancestry, sex, pregnancy, sexual orientation, marital status, gender identity or expression, age, disability, genetic information, veteran status, or any legally protected characteristic.

Job DescriptionSalary:

PCS Wireless is the global leader in the secondary market for connected devices. PCS Wireless partners with OEMs, operators, and retailers to unlock value in their and their customers’ devices. We specialize in the responsible redistribution of new and pre-owned phones, tablets, accessories, and other wireless equipment. PCS Wireless’ partners leverage our Asset Recovery, Trade-In, Device Processing and Device Diagnostics services to sustainably improve their bottom line.

Founded in 2001, our team, through entrepreneurial spirit and can-do attitude, takes on challenges with grit and excitement. We are a community who welcomes challenges and diversity of opinion, always expressed with respect.

If you are looking to be part of a human company, where you can deploy your energy to help implement extraordinary growth, where you can feel part of a team focused in developing a business that is connecting people and maybe making the world a little better place, then come join us as we grow into the next phase of PCS Wireless.

We are seeking a talented IT Security Program Manager to join our team. If you're excited to be part of a winning team, PCS is a great place to grow your career!

The IT Security Program Manager will be directly responsible to ensure the security of PII (Personally Identifiable Information) through prescribed network and physical security protocols for a leading OEM Trade-in program in our Florham Park processing facility. This position reports directly to PCS’s Global VP-Infrastructure and Cyber Security and will communicate and coordinate directly with trade-in partner to efficiently close out security gaps and maintain high security standards. In addition, the incumbent will interact and influence effectively across the entire PCS organization and related vendors to achieve the security objectives at hand.

The IT Security Program Manager will develop and implement security standards and ensure that they are executed by all program staff. The manager in this role will be capable of simple to complex problem solving, development of strategy and associated tactics that will improve the security posture of facility. This role is also responsible for the effective and organized approach to identifying, routing, containing, recovering, managing and/or reviewing security events, incidents, cases and/or alerts to documentation and completion.

Responsibilities

• Identify and protect company assets through the development and implementation of security protocols
• Report and make recommendations to Senior Management regarding project and management strategies as it relates to security processes
• Ensure implementation of effective facility and security management policies; act as first point of contact regarding the same.
• Collaborate with HR and/or the Information Security Officer (ISO) to develop an on-going program to ensure employee awareness and compliance to Company Health & Safety, and Environment and Security policies
• Collaborate with the Information Security Officer regarding the access, intake and integration of all physical, facility security systems, operations, sensors, monitoring, logs and surveillance mechanisms to and with the Security Operations Center or SOC
• Prepare and maintain building capacity data, continually plan ahead for changes in business activities that will impact the property security, risk and portfolio
• Preparation and distribution of Weekly reporting
• Manage the access control and security duties, processes, procedures, policy and systems in facility reception areas and the reception staff
• Prepare, implement, and maintain all contingency management and Disaster Recovery plan(s), policies and procedures for facility. Additionally, collaborate and coordinate with the ISO to comprehensively develop and test facility, IT and data CMP/DRP annually
• Make sure that staff follows security procedures and guidelines through training programs and assessments
• Perform security process evaluations and inspections
• Perform other duties as assigned within your scope of responsibilities

Qualifications

• Bachelor’s Degree required
• Certifications in project management, network security and security management preferred
• Previous experience in project management, network security and security management preferred
• Working knowledge of security technology and equipment including surveillance systems and network solutions preferred
• Excellent communication and organizational skills
• Highly detailed and process driven
• Work well with others both internally and externally
• Highly adaptive and proactive with a sense of drive to deliver excellent quality work in a dynamic atmosphere.