The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.
If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (accommodation requests only; other inquiries won't receive a response).
Regular or Temporary:
Regular
Language Fluency: English (Required)
Work Shift:
1st Shift (United States of America)
Please review the following job description:
Oversee and manage multiple information security technologies, including, managed service security providers where appropriate (endpoint, application, cloud and data protection), both design and engineering. Responsible for the implementation and management of cyber security in all public cloud environments. Interface with multiple Line of Business CIO's to develop and support innovative security solutions to minimize risk and streamline business processes. Maintain day to day operational management of a dedicated team that will support security infrastructure, IDS/IPS, EDR, Proxy, Data Protection, Malware, and other cyber security related technologies.
Responsible for delivering architecture and engineering outcomes for the Cybersecurity organization and the Enterprise. Work with stakeholders across the organization to securely meet the requirements of business initiatives and is a technical authority on cloud and cybersecurity architecture for the Enterprise. Oversee a managed security service provider who will be supporting execution of program efforts.
Duties and Responsibilities: (Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.)
Manage vendor teams and drive discussions with various project teams, developers, and operations teams to ensure compliance with security guidelines and standards.
Experience with cyber security implementations within a major Cloud operating environment.
Experience developing cyber defense strategy including multiple layers of defense.
Knowledge of cybersecurity governance, design, and operations.
Experience and Expertise in Information Security and architecture designing Secure architecture patterns.
Experience in multi cloud security architecture. Primary focus in Azure.
Experience leading strategy and roadmap of capabilities from security architecture perspective.
Drive security controls with information security standards such as: NIST CSF, SOX, SOC2, and CIS Controls.
Strong background in cyber security controls frameworks and regulatory requirements including NIST 800-53, NIST CSF, CSA CCM, SOX, and Privacy regulations.
Lead the design of security controls for business solutions including the design of application-level access and entitlement management, data tenancy and isolation, encryption, and logging.
Expertise in Database and Management technologies including both relational and NoSQL DBs. Expertise in AWS Data Migration Service and Test Data management frameworks including encryption, masking, data and database migration.
Skilled in Identity and Secrets Management, Logging and Monitoring, Application Security and Vulnerability Management and Threat Detection and Response.
Skilled in DevSecops & CI/CD framework and tools.
Required Qualifications: (The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)
Ten (10+) years of cyber security architecture and engineering leadership experience.
Previous leadership experience in medium sized to large teams.
Knowledge of cybersecurity governance, design, and operations.
Strong ability to communicate via written and verbal communication in both formal and casual situations.
Ability to effectively communicate technical information and translate it between stakeholders.
Experience managing teams and vendors, driving SLAs; Experience with managing security with SaaS providers.
Preferred Qualifications:
1. Self-starter who takes ownership and responsibility for prudent service delivery.
2. Works independently with minimal guidance to drive projects to completion, while also working collaboratively with the team to achieve strategic goals.
3. Professional, clear, and concise verbal and written communication to internal customers, subject matter experts, upper management and other audiences.
4. A collaborative team player who will solicit and offer input and support decision-making.
5. Position requires access to sensitive confidential material; Integrity and discretion are mandatory.
6. Comfortable working in a continuously changing, fast-pace environment - balancing multiple priorities, special projects, and other activities.
General Description of Available Benefits for Eligible Employees of CRC Group: At CRC Group, we're committed to supporting every aspect of teammates' well-being – physical, emotional, financial, social, and professional. Our best-in-class benefits program is designed to care for the whole you, offering a wide range of coverage and support. Eligible full-time teammates enjoy access to medical, dental, vision, life, disability, and AD&D insurance; tax-advantaged savings accounts; and a 401(k) plan with company match. CRC Group also offers generous paid time off programs, including company holidays, vacation and sick days, new parent leave, and more. Eligible positions may also qualify for restricted stock units and/or a deferred compensation plan.
CRC Group supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. CRC Group is a Drug Free Workplace.
EEO is the LawPay Transparency Nondiscrimination ProvisionE-Verify
