IT Security Services Manager

GE Current, a Daintree company
Published
October 28, 2019
Location
East Cleveland, OH
Job Type

Description

Security Operations (Service Management, Global Infrastructure Security and Operations including Servers, Cloud Hosting, End User Clients, Mobile and Data Networking, Enterprise and Product Risk, Compliance).

Supports the other members of the IT Leadership Team in delivering the following capabilities:

Governance (Risk, Security, Compliance, Performance Measurement, Contract/Vendor Management, Business Process Controls and Internal Audit, Service Strategy/Governance, Service Level Agreements and Management, Cost and Budget Management, Cost Optimization, Disaster Recovery and Business Continuity, IT Asset Management, Knowledge/Information Lifecycle Management).

Job Responsibilities

  • Responsible for delivery of IT security, risk and compliance services across organization.
  • Responsible for defining and managing the metrics to evolve organization security posture
  • Conduct a thorough evaluation of Current security needs, priorities and opportunities in order to visualize, create, and execute on an information security program
  • Design and develop cyber security program roadmap to align and scale with company strategy
  • Lead security assessment and testing processes, including but not limited to penetration testing, vulnerability management, and secure software development
  • Design, develop and extend security tooling and automation efforts across the organization
  • Proactively identify security issues and potential threats and continuously build processes and design systems to watch for and protect against them
  • Lead compliance activities including external audits, regulatory compliance projects, and overall information security reviews
  • Responsible for working with managed security services provider proactively detect, protect and remediate cyber security threats internally and externally
  • Responsible for working across business units to ensure cyber security polices are align with business strategy
  • Responsible for working with product team to establish a cyber security governance model for products
  • Educate the organization about these threats and implement threat protection measures at a global level
  • Measure organization security awareness to establish a baseline and prepare a plan and execute continuous maturity
  • Act as an advocate for secure application and infrastructure best practices, ensuring a security presence at all stages of the software development lifecycle
  • Respond to cyber security threat in off hours if needed
  • Lead, mentor, and continue to build a team of top security engineer and incident responder
  • Perform other duties that may be required.

 

Desired Skills and Experience

Required:

  • Bachelor's Degree in Information Technology or related field, or equivalent combination of education and experience
  • Minimum ten years of experience operating in a complex global technology environment
  • Prior experience as an senior manager in enterprise security domain
  • Working experience of Cyber security standards like ISO and NIST
  • Working experience of managing identity, access management and separation of duties
  • Deep understanding of cybersecurity threats and ability to develop prevention strategies for IT architecture
  • Must be able to recommend and implement programs or projects for risk mitigation
  • Must have experience of working with Managed Security Service Provider
  • Proven record to managing service levels with service providers
  • In depth knowledge of security centric technologies like DNSSec, Routing, ESG, VPN, Proxy, DDOS, Firewall, IDS/IPS etc.
  • Demonstrated ability to prevent and protect against data loss and fraud both internally and externally
  • Ability to provide real-time security analysis of immediate threats, and triage
  • Must be able to conducts breach investigations and forensics
  • Excellent communication skills, both oral and written with C-Suite Executive Staff

Preferred: 

  • Ability to work across organization/different business units and provide leadership for security and governance
  • Demonstrates collaborative business relationship skills
  • CISSP/CISM certification is nice to have

Company Description

Current is the digital engine for intelligent environments. Current blends advanced LED technology with networked sensors and software to make commercial buildings, retail stores, industrial facilities and cities more energy efficient & productive. Backed by a broad ecosystem of technology partners, Current is helping businesses and cities unlock hidden value and realize the potential of their environments.

Related Jobs