How You Will Make an Impact:
- Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.Develop and enforce IT security policies, standards, and procedures.
- Conduct regular security assessments and audits to identify vulnerabilities and recommend mitigation strategies.
- Lead and participate in compliance audits, including SOC II, ISO, CSA STAR, and other security certifications.
- Monitor network traffic for unusual activity and implement security controls to prevent unauthorized access and data breaches.
- Manage and respond to security incidents, including forensic investigations and incident response coordination.
- Stay up to date with emerging cybersecurity threats, industry trends, and new technologies to continuously improve security practices.
- Oversee and manage Mobile Device Management (MDM) solutions.
- Collaborate with IT and development teams to integrate security best practices into system design, development, and deployment.
- Provide security awareness training to employees, fostering a culture of security awareness and compliance.
- Prepare and present security reports to senior management, covering risk assessments, incidents, and compliance status.
- Ensure compliance with legal and regulatory requirements related to IT security.
What You Bring to the Team:
- Bachelors Degree in Chemical or Mechanical Engineering, IT or Computers Engineering or equivalent degree in Computer Science
- Minimum [Specify Years] years of experience in cybersecurity roles.
- Proven track record of developing and implementing cybersecurity strategies in enterprise environments.
- Hands-on experience with security risk assessments, audits, and incident response.
- Experience working with security frameworks and compliance audits (ISO, SOC II, CSA STAR, etc.).
- Strong analytical, problem-solving, and communication skills.
- Technical Expertise:Strong knowledge of Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), Vulnerability Risk Management (VRM), and Security Information and Event Management (SIEM).
- Must possess industry-recognized security certifications (e.g., CISSP, CISM, CEH, ISO 27001 Lead Auditor, etc.).
- Experience in preparing and submitting RFPs (Request for Proposals) for customers.
- Proficiency in creating detailed security documentation and reports.
- Understanding of internal product vulnerability testing and external penetration testing methodologies.
- Hands-on experience with Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
- Strong knowledge of multi-cloud security practices and cloud compliance.
- Experience with Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS).
- Familiarity with Antivirus (AV), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR) solutions.
