Manager, Cybersecurity

Description:

At Element, employees play a critical role in delivering value to customers and ensuring an exceptional client experience. We are committed to the success of our clients, employees, and investors by fostering a culture where every employee can make a difference!

The Cybersecurity Manager manages the operational responsibilities associated with the planning, coordination, mitigation and continual improvement of assigned enterprise wide cybersecurity detect and response controls. In addition, this role will recommend and facilitate implementation of best practices in cybersecurity for Element. This individual must possess strong leadership, communication, planning skills, and have a broad cybersecurity and IT background in systems, servers, networks and hardware experience gained in managing and delivering critical IT services. Success for the role will be to support the delivery of a threat defense program that is positioned to address, contain, and drive successful resolution to any cybersecurity situation.

Are You:

• A leader in conducting risk assessments, threat modeling, and vulnerability analyses?

• Knowledgeable of compliance standards, regulatory requirements, and industry best practices in cybersecurity?

• An expert at designing and implementing robust security architectures and protocols, with experience collaborating with cross-functional teams to embed security into the development lifecycle?

A Day in the Life

Security Domain Structure

• Perform oversight of the development, implementation and evaluation of information system security program; special emphasis placed upon integration of existing Cloud platforms and hybrid systems within assigned area

• Perform risk assessments and make recommendations to leadership for improvements to manage cybersecurity risk

• Advise business on security testing methodologies and processes

• Develop and maintain a formal Information Systems Security Program for assigned areas

• Ensure that all Indicator of Attack (IOA)s, network administrators, and other cyber security personnel receive the necessary technical and security training to carry out their duties

• Conduct periodic assessments of the security posture of the authorization boundaries

Build deliverables - Develop, review, endorse, and recommend actions

• Develop and execute security assessment plans that include verification that the features and assurances required for each protection level are functioning

• Maintain a and/or applicable repository for all system authorization documentation and modifications

• Partner with Director to create and implement an Element Cybersecurity Governance Council

• Support development of policies and procedures for responding to security incidents, to include investigating and reporting security violations and incidents

• Ensure compliance with the company’s storage & retention policies – that they are in place for clearing, sanitizing, and destroying various types of hardware and media

• Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system

• Lead and manage development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting local cyber security training

• Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed

• Assess changes in the system, its environment, and operational needs that could affect the authorization