General Purpose: Security leader with a background in AWS and cloud Security. A successful candidate will have excellent written and verbal skills, be organized, and have expert level skills in the field of IT and Cloud Security. You will help define and enforce our security policies and procedures. You must have demonstrable experience and skills in Cloud based security and have managed and built successful security operations in the past. You must be capable of leading from the front lines, this position requires both hands on technical experience as well as management skills. Reporting to the Director of Information Technology, you will be responsible for architecting and implementing our IT Security policies.

Job Status: Full Time  

Essential Duties & Responsibilities:

• Provide leadership and technology vision to the IT Security team
• Provide leadership and technology vision to the IT Security team
• Perform internal Security Audits
• Participate in external Security Audits
• Document, implement and monitor adherence to IT security standards
• Assess and improve security metrics Work on improving security tools and operations
• Monitor and manage IDS, vulnerability scanning & assessments
• Work as DPO (Data Privacy Officer) for the company
• Create awareness in the company on Security, Privacy and compliance requirements
• Ensure security and privacy training for staff involved in data processing
• Conducting security and privacy audits to ensure compliance and address potential issues proactively
• Serving as the point of contact between the company and clients for privacy controls
• Log aggregation and analysis
• Manage Anti-Virus
• Address security and data breach related issues and incidents

Minimum Requirements 

• CISSP, Security+ or equivalent certification
• 10+ years of Cyber Security experience
• 5+ years of IT management experience
• 5+ years of AWS experience
• 3+ years of experience with Identity & Access Management tools
• 10+ years of Linux & Windows Security administration Experience with managing Cloud and Container Security
• Experience with Network and Application penetration testing Experience with Vulnerability scanners, IDS and IPS deployment and monitoring
• Experience with SIEM tools Experience in developing, documenting and implementing security standards
• Experience with Security Automation and Orchestration tools Experience with Incident Response & Management, Vulnerability Management, Patch Management
• Experience managing security operations and teams
• Ensure Customer Satisfaction
• Ensure success and be accountable for individual product/project
• Accountable for Quality of the product/project and deliverables
• Drive Continual improvement programs to bring organization efficiencies – process, tools, skills etc.
• Represent as appropriate in Inspections and Audits (External and Internal) and drive action plans to closure
• Ensure deep dive conduct of RCAs and ensure CAPAs to closure
• Ensure a metrics driven organization

Additional Qualifications

• Experience with Datadog or equivalent monitoring tools (Logz.io, Splunk, Nagios, SumLogic)
• Experience with practices such as Change Management and Configuration Management
• Experience with Infrastructure as Code and tools such as Chef, Ansible, Puppet
• Experience hardening Operating Systems and Applications (Centos, RHEL, Ubuntu, Windows)
• Endpoint security management
• Experience working in GxP environments
• Experience with practices such as Change Management and Configuration Management

 Travel Expectations

• 0%