Seeking an Information Technology Security Manager to be a lead member of theInformation Security team. This position will report directly to the Chief Information Security Officer and be responsible for directing subordinate supervisors and staff in the development and delivery of IT security standards, and best practices.
The ITSM will perform two core functions for the Department:
- Overseeing the Operations of the Security Operations Center (SOC) and managing security analysts.
- Supporting the Compliance Team in maintaining and establishing a stronger security stance through policy, architecture, and training processes.
Secondary tasks include:
- Assisting in the selection of appropriate security solutions.
- Overseeing vulnerability audits and assessments.
The ITSM is expected to interface with peers in the Systems and Network departments, as well as with leaders of the business units. This collaboration aims to share the corporate security vision and solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation.
Responsibilities (included but not limited to):
- Overseeing the deployment, integration, and initial configuration of all new security solutions and enhancements to existing solutions, in accordance with standard best operating procedures and the enterprise’s security documents.
- Creating and maintaining the department’s security architecture design.
- Working with the InfoSec Compliance team to create and maintain the department’s Business Continuity Plan and Disaster Recovery Plan, where appropriate.
- Implementing processes and methods for auditing and addressing information security standards noncompliance to acceptable compliant environments.
- Providing support in maintaining the department’s security awareness training program.
- Conducting studies within and outside the organization to ensure compliance with industry and security standards and best practices.
- Managing and participating in the planning and implementation of security administration for all IT projects, responsible for evaluating and selecting security applications and systems.
- Making recommendations and assisting in the implementation of changes to work methods and procedures to enhance effectiveness or strengthen security measures.
- Continuing InfoSec’s efforts to maintain security documents, such as policies, standards, baselines, guidelines, and procedures.
- Having experience with security and technology tools such as SIEM tools (e.g., Splunk) and endpoint security and threat intelligence tools.
- Supervising all investigations into problematic activities and providing ongoing communication with the CISO and InfoSec team.
- Supervising the design and execution of vulnerability assessments, penetration tests, and security audits.
Additional Requirements:
- DOR will conduct a background check on all candidates considered for the position. Individuals must be compliant with Georgia tax obligations.
- Individuals with overdue and unpaid taxes or any felony convictions (regardless of how long ago) will not be offered the position or hired.
- All employees will be fingerprinted.
Required/Desired Skills:
- Bachelor’s degree in computer science or information technology (Required).
- Systems and Network Security experience (Required, 5 years).
- IT Security experience (Required, 5 years).
- Management experience (Required, 2 years).
- AWS experience, performing security reviews/security assessments (Required, 5 years).
- Industry certifications: CISSP, CompTIA Security+, or AWS Certified Security (MUST UPLOAD CERTIFICATIONS) (Required).
- Technical knowledge of developing and managing information security, disaster recovery, software, and database protection (Highly desired).
- Leadership experience managing multiple, large cross-functional teams or projects and working with senior-level management (Highly desired).
- Experience or knowledge in the Motor Vehicle/Tax Industry (Highly desired).
