Job Description

Position Summary :
Oversees enterprise security solutions through policy, architecture, and training. Oversees the security operations team, manages security incidents, and ensures compliance with regulatory requirements. Collaborates with various departments to identify and mitigate security risks, conducts regular security assessments, and stays updated on the latest cybersecurity threats and trends.

Criteria:
Education/Experience:
Bachelor’s degree in the field of computer science or related field and
10 years’ work experience in technology and/or cybersecurity. Minimum of five years’ direct supervisory experience.

Skills/Abilities:
Excellent written, oral, and interpersonal communication skills. Proven analytical and logical problem-solving skills. Keen attention to detail and strategic thinker. Ability to prioritize and execute in high-pressure situations. Project and task management experience.

Certifications:
One or more of the following certifications:

• ISACA Certified Information Security Manager (CISM)
• (ISC)2 Certified Information Systems Security Professional (CISSP)
• (ISC)2 Information Systems Security Architecture Professional (ISSAP)

Physical Demands:
Ability to use a computer keyboard effectively. Ability to orally communicate by phone and in-person. Ability to see and read on-screen and printed material.

Work Environment:
Indoor office conditions. Occasional travel required.

Driving:
Must possess and maintain a valid Tennessee “Class D” license.

Telephone:
Maintain phone and furnish the number to his/her supervisor.
Essential Functions:

• Selects, works toward, and maintains adherence to cybersecurity framework.
• Establishes and maintains the enterprise security awareness training program.
• Creates and maintains the enterprise security documents including policies, standards, and procedures.
• Creates and maintains the enterprise Incident Response Plan, Disaster Recovery Plan, and Business Continuity Plan documents.
• Conducts regular simulations and tabletop exercises for plan testing and continuous improvement.
• Helps Management establish and maintain appropriate risk tolerances for the enterprise.
• Leads security assessment and risk identification activities to maintain the company risk register.
• Establishes enterprise cybersecurity budget and spending plan.
• Ensures optimal investments through risk, impact-probability, and cost-benefit analysis activities.
• Enterprise cybersecurity expert and company liaison when working with security vendors, law enforcement and regulatory agencies, professional committees/organizations, and peer utilities.
• Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Selects and acquires additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’s existing procurement processes.
• Oversees the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
• Ensures the confidentiality, integrity, and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases and other data repositories.
• Ensures the enforcement of enterprise security documents.
• Supervises all investigations into problematic activity and provide on-going communication with
  Senior VP/Chief Technology Officer.
• Performs regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.
• Engages in ongoing communications with peers in the Systems and Networking groups as well as the various business groups to ensure enterprise wide understanding of security goals, to solicit feedback and to foster cooperation.
• Supervises the design and execution of vulnerability assessments, patch management procedures, penetration tests, and security audit activities.
• Provides security guidance and recommendations for IT and enterprise-wide projects.
• Participates in the development of IT strategies.
• Performs additional duties as requested.

Essential Leadership Functions:

• Assumes overall management responsibilities for Cyber Security staff.
• Selects, schedules, assigns, and measures work.
• Trains and develops staff, clients, and other JEA employees.
• Performs performance appraisals.
• Performs discipline when appropriate.
• Develops department budget and helps manage spending.

Job Tags

Full time, Work experience placement,

Similar Jobs