Cloud Security Manager – Tempe, Az
When you work with the world’s most innovative companies, you know you’re making a difference.Our clients are the game changers, leaders and investors who fuel the global innovation economy. They’re the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.
They come to The Company for our expertise, deep network and 30+ years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising The Company, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.
Join our company and be part of bringing our clients’ world-changing ideas to life. At The Company, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities The Company serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.
Job Description
The Cloud Security Manager in Cyber Security Engineering is an experienced security professional that demonstrates management capability, and is responsible for providing oversight and guidance to security analysts and architects in the execution of their duties.
The Manager is also responsible for ensuring stakeholder satisfaction with the cyber security services offered, prepares metrics and reports, and provides leadership and, mentorship to team members.
Knowledge: -
·Strong demonstration of The Company Values: empathy, integrity, diverse perspectives, and responsibility, learning and improving
·Deep understanding of security architectures, defense in depth, cloud and on-prem security models and concepts
·Experience and working knowledge of network architecture, subnetting, and TCP/IP protocols, and OSI model layers and protocols at each model layer
·Understanding of international and United States laws and regulations impacting cyber security and personal data privacy, including GLBA, SOX, and the FFIEC Information Security requirements
·Working knowledge of security frameworks and control references such as NIST CSF, CIS 20, COBIT, PCI DSS, OWASP, ISO 27000 family and NIST SP 800 series.
·Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)
Skills:
·Demonstrates the ability to deescalate conflict, shows empathy and concern for others viewpoints and opinions
·Capable of discerning how and what to escalate, and how to communicate effectively across groups and teams, even when objectives, opinions, or viewpoints may be misaligned or in conflict
·Able to distinguish between short-term solutions and long-term complex improvements
·Excellent analytical and problem-solving skills
·Ability to demonstrate empathy while seeking common interests; effective problem and conflict resolution skills
·Familiar with government security standards and regulations including GLBA, SOX, PCI, COBIT, ITIL
·Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)
·Excellent written and verbal communication skills
Education and Experience:
·Bachelor’s degree in management Information Systems, Computer Science, and/or Business, or equivalent work experience
·7+ years working in IT security domain
·Experience implementing, supporting, or defining requirements for security tools such as WAF, SIEM, IPS, CASB, EDR
·Experience with Azure public cloud services and security tools
·Experience with Hashicorp Terraform and Sentinel
·Experience with SIEM technologies.
·Experience with cloud technologies specifically Azure.
Experience with Azure in a security environment preferred.
·Experience working with Windows and Linux operating systems - Experience working with firewalls and network IDS/IPS
·Experience doing vulnerability assessments, risk assessments and penetration testing
Certifications:
·One or more of the following professional certifications: CISSP, CISM, SANS GIAC, CISA, Security+, AWS Solutions Architect, AWS Security Specialist (or willingness to obtain within 6 months)
·Strong demonstrated knowledge of networking and TCP/IP protocol or networking certification (CCNA)