Security director job description

The Rock Family of Companies is made up of nearly 100 separate businesses spanning fintech, sports, entertainment, real estate, startups and more. We're united by our culture - a drive to find a better way that fuels our commitment to our clients, our community and our team members. We believe in and build inclusive workplaces, where every voice is heard and diverse perspectives are welcomed. Working for a company in the Family is about more than just a job - it's about having the opportunity to become the best version of yourself.
Preferred Qualifications
Bachelor's degree 5 years of security experience

Job Summary
As the Director of Tower City Security, you'll lead our Tower Security Operations Center which operates 24/7/365. . This includes assisting with contracted Security and Parking teams by acting as a site reviewer for existing contacts. In this role, you'll be initiating activities to create security awareness within the organization, as well as assisting our technology teams with on-site security maintenance, support and installations. Here, you're going to also direct the development and implementation of security programs in the region to guard against theft, vandalism, sabotage, violence, or other threats against the client, organization, or its employees.

Responsibilities
Identify security weaknesses and implement procedures for mitigating losses Support Cleveland assets by performing safety presentations & ensuring compliance of security procedures on a quarterly basis Work directly with 3rd party vendors to quote, purchase, and test security-related products Coordinate new construction projects for the business as it relates to the security layout Manage small projects Audit project invoices billed to security for project completion at sites which you support Assist in the coordination of security actions such as badging photos, jump start orientations and emergency supply audits Lead the effort to coordinate security events off-site for company team meetings and activities Oversee site disaster planning and response with BCP and emergency, fire prevention and safety issues Ensure compliance with Federal, State, and local regulations and standards involving hazardous materials when delivered by U.S. mail Act as liaison between security and property teams in ClevelandOrganize monthly calls and periodic site audits with out-of-state Security Czars for information sharing and best practices Collaborate with senior security leadership across the Family of Companies locations to ensure the same standards are being followed and help define new operational strategies Review security technology installations to validate processes and best practices have been followed Assist in establishing a data driven metrics program Perform site security audits Complete investigations as needed Work with Law Enforcement as necessary

Who We Are
Rock Security offers 24/7 safety and security services and training to Rock Family of Companies team members, tenants and visitors. We're proud to be part of collaborative public-private partnerships working toward the common goals of enhancing the safety of everyone who lives, works and visits Detroit, Cleveland and our other home cities.

Disclaimer
This is an outline of the primary responsibilities of this position. As with everything in life, things change. The tasks and responsibilities can be changed, added to, removed, amended, deleted and modified at any time by the leadership group.

We are proud equal opportunity employers and committed to providing an inclusive environment based on mutual respect for all candidates and team members. Employment decisions, including hiring decisions, are not based on race, color, religion, national origin, sex, physical or mental disability, sexual orientation, gender identity or expression, age, military or veteran status or any other characteristic protected by state or federal law. We also provide reasonable accommodations to qualified individuals with disabilities in accordance with state and federal law.

The Company is an Equal Employment Opportunity employer, and does not discriminate in any hiring or employment practices. The Company provides reasonable accommodations to qualified individuals with disabilities in accordance with state and federal law. Applicants requiring reasonable accommodation in completing the application and/or participating in the employment application process should notify a representative of the Human Resources Team, The Pulse, at 1-800-411-JOBS.

The CareOne mission is to define excellence within the health care community. We are dedicated to Maximizing Patient Outcomes. We treat Residents, their families and each other with respect, dignity and compassion. Through a collaborative and consultative approach, we strive to provide a framework of strength and stability for our Centers and Communities. We work to maintain the highest standards of care and service for Residents, families and our valued employees.
We are proud to Offer:
Competitive Salary Comprehensive Healthcare Benefits 401k Retirement Plan Paid Time Off Opportunities to advance and grow your career And More!
If working with people who are dedicated, compassionate, and concerned about their patients is essential to you, then you'll appreciate being a part of our team. We've built a strong reputation on the outstanding level of care that we provide. We have a graciously appointed facility with strong belief in patient care and service; join us at our beautiful facility!
We are an Equal Opportunity Employer
EEO/AA/M/F/DV
Responsibilities
Position Summary
The Director of Cybersecurity oversees daily operations of the Cybersecurity program, including Incident Response and the Security Operations Center (SOC). This position will work with senior management across all functions within the Enterprise in creating and delivering the vision and strategy for information security. The position will be required to establish productive and mutually beneficial relationships with stakeholders at all levels of the Operation. Advise the Chief Information Officer (CIO) regarding relevant security risks and threats, ensure that threats are detected and addressed as early as possible, and address information security incidents in a timely fashion. Participates in budgeting and the development of strategic and tactical plans required for the implementation and maintenance of the Care-One Information Security Program. The Director of Cybersecurity reports to the CIO. The Director of Cybersecurity will be responsible for enterprise cybersecurity incident response, vulnerability management, cyber treat intelligence, staff training, as well as contributing to policy and procedure drafting, review and socialization.
Reports to: _____CIO________________________________
Essential Duties and Responsibilities
-Work with outsourced SOC on alerts and applications.
-Handle all security concerns, incidents, or questions
-Review all security contracts with legal
-Review and update all security policy and procedures
-Review and update Risk Management Plan
-Identify all threats and create mitigation plan
Qualifications
Qualifications
10 years of information technology experience
5 years of direct IT Security experience in one or more of the 10 Security domains
5 Years of Information Security Experience in cybersecurity, incident response, and security operations
Demonstrated experience in information security principles, control frameworks and governance models.
Extensive experience managing information security and risk management in a complex technical environment including industry accepted risk assessment frameworks (NIST SP 800-30/37 and NIST SP 800-53)
Skills and Training
Bachelor's degree in MIS, IT, Information Security or other related field; depth of experience in lieu of degree will be considered
Master's Degree in IT, Information Security or related field preferred
One or more of the following certifications required:
Certified Information Systems Security Professional - CISSP
Healthcare Information Security and Privacy Practitioner - HCISSP
Certified Information Security Manager - CISM
Qualifications
10 years of information technology experience
5 years of direct IT Security experience in one or more of the 10 Security domains
5 Years of Information Security Experience in cybersecurity, incident response, and security operations
Demonstrated experience in information security principles, control frameworks and governance models.
Extensive experience managing information security and risk management in a complex technical environment including industry accepted risk assessment frameworks (NIST SP 800-30/37 and NIST SP 800-53)
Skills and Training
Bachelor's degree in MIS, IT, Information Security or other related field; depth of experience in lieu of degree will be considered
Master's Degree in IT, Information Security or related field preferred
One or more of the following certifications required:
Certified Information Systems Security Professional - CISSP
Healthcare Information Security and Privacy Practitioner - HCISSP
Certified Information Security Manager - CISM
Shift 1st

We Are Overstock:

At Overstock.com, we believe that everyone should “Be You!”. Overstock is a community that upholds a culture of understanding, acceptance, and respect. We believe a person's individuality is at the core of diversity, and those traits, beliefs, and characteristics should be valued and embraced. Living by this ethos is essential to the success of our business. Our goal is to foster a more diverse environment where every employee visibly demonstrates inclusive behaviors and respect for individuals.

This position is eligible for remote work. Currently we can hire employees in the following states: California, Connecticut, Idaho, Kansas, Maine, Massachusetts, Michigan, Minnesota, New Hampshire, New Jersey, New York, North Carolina, Ohio, Pennsylvania, Rhode Island, South Dakota, Texas, Utah, Washington, Wisconsin, Wyoming. This role will have occasional on site expectations.

You Will:
Lead an incredible team of cyber security professionals in identifying security opportunities and implementing remediation efforts Build on a solid foundation working closely with fast-moving IT, engineering, and administrative teams to bring next-generation capabilities (people, process, and technology) to Overstock Identify current and emerging threats against the organization (who they are, how they operate, motivations) and how to allocate the necessary resources to counter them Ability to respond immediately to new threats and discoveries in determining risk and setting priorities for resolution. Includes monitoring security threat sources (bulletins) and providing communications on discovered vulnerabilities or threats with consideration in how they impact the organization Facilitate moving the organization towards modern security solutions that are cloud-based, real-time, and intelligent Accelerate the ongoing cultural transformation to a product-mindset that embraces automation, systematic risk reduction and agile methodologies Discover, assess, and manage security findings, attacks, and breaches using security tooling in accordance with risk assessment methodologies Work with team members to engineer, implement, and administer security-based systems, designed to protect the organization from threats (both current and future) Assess security strategies in driving security management in areas where compliance may need to be improved Continue to lead and champion the transition to a DevOps culture, while instilling operational excellence in all aspects of delivery Help manage the security road map by researching industry trends, best practices, third-party offerings, and vulnerability disclosures. Advise management and appropriate technology teams with recommended action items, working closely with other departments on crossover improvements and projects Assist with awareness programs for all technology and business staff on security issues - topics, best practices, and specific areas of improvements - in order to increase awareness and understanding as well as compliance throughout the company. Includes assisting in the training and mentoring of other security team members Drive the transformation of all security technologies into fully automated workflows and operating environments. This includes reducing manual processes, automatic monitoring and evidence collection, and optimize time to deliver customer value Provide input into security documentation i.e. metrics, BCDR, incident response plans, corporate security policies, etc.Ensure compliance with regulatory requirements as they relate to Information Technology. PCI & SOX, and privacy Perform other duties as required and assigned by manager and upper management Attract, hire, and retain key engineering talent and technologists around these efforts Experience hiring and leading diverse teams Follow legal policies as directed

You Are:
Passionate for securing modern computing platforms You have a strong desire to continually learn about new technologies You have strong conceptual thinking and communication skills Able to influence and work cross-functionally Continuously raising the bar for quality, in everything you do i.e., recruiting, hiring, onboarding, decisions, communications, presentations, etc.Strong written and verbal communication skills Organized, responsive and highly thorough problem solver Able to manage multiple concurrent tasks and projects You have a record of building excellence and a brand that attracts talent to the organization Able to understand at a technical level the software lifecycle including design, implementation and delivery Understanding of cloud, virtualization, APIs, and modern software languages Experienced in designing, architecting, and implementing cyber security technology platforms in security domains such as:ApplicationsInfrastructureNetwork, and data controls Vulnerability management Incident response

Who We Are:

We're a passionate group of collaborative problem solvers and creative innovators, working on cutting-edge technology. From building award-winning retail applications (with amazing AR functionality) to creating leading blockchain and machine learning technologies, each of us embodies a unique value and contributes a diverse perspective to the team.

What We Offer:
401k (6% match) Flexible SchedulesOnsite Health ClinicTuition Reimbursement, Leadership Development Program, & Mentorship ProgramOnsite Fitness CenterOverstock Women's Network (OWN) And More…
*Benefits vary based on position, tenure, location, and employee election

Physical Requirements:
This position requires you to sit, stand and perform general office functions. You may also be required to lift up to 25 pounds occasionally. Bending, stooping and reaching are also frequently required.

Equal Employment Opportunity:
It is our policy to provide equal employment opportunity for all applicants and associates. This policy includes our commitment to ensure that all employment decisions are made without regard to race, color, religion, gender, national origin, disability, pregnancy, veteran status (including Vietnam era veterans), age, sexual orientation, gender identity, or any other non-job-related characteristic protected by law.

Back to Overstock Careers