Title IT Security Manager 1 Location Atlanta, GA (Hybrid Locals Only) Duration 7 Months Interview Type Web Cam Interview Only Job Type C2C,W2 Job Description
Manages the development and delivery of IT security standards, best practices, architecture and systems to ensure information system security across the enterprise.
The Georgia Department of Revenue is seeking an Information Technology Security Manager to be a lead member of the Information Security team. This position will report directly to the Chief Information Security Officer and be responsible for directing subordinate supervisors and staff in the development and delivery of IT security standards, and best practices.
The ITSM will performs two core functions for the Department.
- The first is overseeing the operations of the of the Security Operations Center (SOC) and security analysts. The second is supporting the Compliance team in maintaining and establishing a stronger security stance through policy, architecture and training processes. Secondary tasks will include assisting in the selection of appropriate security solutions, and oversight of any vulnerability audits and assessments.
- The IT SM is expected to interface with peers in the Systems and Network departments as well as with the leaders of the business units to both share the corporate security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and co-operation.
Responsibilities included but are not limited to:
- Overseeing the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise's security documents specifically.
- Creating and maintaining the department's security architecture design.
- Working with our InfoSec Compliance team to create and maintain the department's Business Continuity Plan and Disaster Recovery Plan, where appropriate.
- Implementing processes and methods for auditing and addressing information security standards noncompliance to acceptable compliant environments.
- Providing support in maintaining the department's security awareness training program.
- Conducting studies within and outside the organization to ensure compliance with industry and security standards and best practices.
- Managing and participating in the planning and implementation of security administration for all IT projects and responsible for evaluation and selection of security applications & systems.
- Making recommendations and assisting in the implementation of changes to work methods and procedures to make them more effective or to strengthen security measures.
- Continuing InfoSec's efforts to maintain security documents, such as policies, standards, baselines, guidelines and procedures.
- Experience with security and technology tools such as, SIEM tools, i.e., Splunk or endpoint security and threat intelligence tools.
- Supervise all investigations into problematic activity and provide on-going communication with the CISO and InfoSec team.
- Supervise the design and execution of vulnerability assessments, penetration tests and security audits.
- DOR will conduct a background check on all candidates considered for the position. Individuals must be compliant with Georgia tax obligations.
- Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired.
- All employees will be fingerprinted.
Skill Required / Desired Amount of Experience Bachelor's degree in computer science or information technology Required Systems and Network Security experience Required 5 Years IT Security experience Required 5 Years Management experience. Required 2 Years AWS experience, performing security reviews/security assessments of applications and infrastructure Required 5 Years Industry certifications: CISSP, CompTIA Security+ or AWS Certified Security (MUST UPLOAD CERTIFICATIONS) Required Technical knowledge of developing managing information security, disaster recover, software and database protection Highly desired Leadership experience managing multiple, large cross functional teams or projects and working with senior level management Highly desired Experience or knowledge in Motor Vehicle/Tax Industry Highly desired