MINIMUM QUALIFICATIONS

• Ten or more years of experience in information technology, information security and/or cybersecurity.
• US Citizenship Required.

PREFERRED QUALIFICATIONS

• Five or more years of experience developing comprehensive cybersecurity solutions in a large-scale environment.
• Experience working collaboratively with technical, business, and executive stakeholders.
• Extensive experience across various cybersecurity services, including network security, data security, cloud and hybrid cloud security, application security, endpoint security, and IT/OT security.
• Focused expertise in Application Security and Cloud Security.
• Experience creating, contributing to, and collaborating on solution engineering artifacts and presenting to a broad range audience.
• Familiarity with the NIST Cybersecurity Framework (CSF), associated best practices, and the ability to apply them within an organization.

• Leads cyber security project delivery by ensuring the cyber security team delivers on success criteria, addresses project issues and risks, and builds commitment with delivery team and internal or external partners
• Designs, implements and maintains a secure posture and baseline across all components of the organization on-premises and cloud IT environments, employing recognized security engineering practices and supporting secure build processes
• Develops, maintains, and delivers secure system profiles, and maintains an overall view of compliance
• Collaborates with the IT and Quality teams to assess, remediate, and prevent information technology risks
• Drives system auditing, vulnerability risk assessments, assured file transfers, hardware and software configuration management, data integrity containments and investigations on internal affairs related security violations and incidents
• Ensures that new and existing security applications and systems are successfully integrated during implementations, updates, and patching to maintain or increase our ability to detect and prevent security exploits
• Collaborates with external managed security solution provider and analysts to enhance security solutions to reduce malicious and suspicious activity based on security data analysis, review of the current threat landscape, and assessment of security tickets
• Works with the infrastructure team and security architect to analyze security threats and recommend technical infrastructure and architecture changes to address gaps and reduce risk
• Shapes procedures and methods for auditing and addressing risk and non-compliance to information security standards
• Fosters strong relationships with senior leaders and stakeholders to understand and map out business priorities and how security engagement can be effectively managed to deliver secure design solutions
• A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.