Cloud Security Engineer supporting and securing client environments across AWS and hybrid infrastructures. Collaborating with Cloud Operations to monitor, investigate, and remediate security events.
About the role
- Sr. Manager, Cybersecurity leading IT Cybersecurity for Avantus. Managing solutions, incidents, and compliance for a clean energy company.
Responsibilities
- Key responsible owner to maintain and improve the efficacy of our IT cybersecurity solutions, controls, procedures, and policies that support the security posture of the company.
- Key responsible owner to respond to cybersecurity incidents, delegating investigation analysis and response to internal and external resourcing, as appropriate. Escalate incident response to leadership according to incident response plans, as appropriate.
- Drive solutions implementations and systems changes, with the help of internal IT support staff and external consultants, as necessary. Organize and manage projects and the required resources from start to finish.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to continually develop the strategy and trajectory of the broader IT department and the systems that support the company.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to execute cybersecurity solution implementations and special projects in support of the broader maturity and scaling of the IT cybersecurity program and its supporting systems.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to develop controls, standards, best-practice, policy, and process that will streamline cybersecurity operations and help protect the business as we scale.
- Lead the continued development and maturity and accuracy of security incident and event management (SIEM) systems, vulnerability management, security analytics, incident response, and other cybersecurity operational systems.
- Work closely with the Vice President of Information Technology & Security, as well as other IT staff, to strategically support broader IT infrastructure, systems, and cybersecurity initiatives.
- Generate and maintain project trackers, reports, or dashboards as helpful and efficient to support the team. Collaborate with IT and business stakeholders to deliver to longer-term projects, successfully documenting and executing change plans, and executing rollouts of cybersecurity systems and features in line with IT department and company goals.
- Stay on top of industry trends and new technologies as applicable and relevant to the business, including by leveraging access to various cybersecurity industry subscriptions, community networks, conferences and events, training platforms, and other resources, as supported by the company.
- Mentor and provide collaborative cybersecurity guidance to IT team members and business stakeholders.
Requirements
- 10+ years in IT security roles, ideally 5+ years specifically in cybersecurity leadership positions and/or managing IT Cybersecurity Operations and corresponding functions for the enterprise.
- Proven experience developing and implementing enterprise security programs
- Direct experience with NERC CIP Compliance standards and controls a strong plus.
- Direct experience managing a program adhering to at least one leading industry-standard cybersecurity control framework is a requirement. Experience specifically with CIS, NIST, ISO or other frameworks a strong plus.
- Proven experience implementing, administering, and supporting the enterprise cybersecurity cloud application and infrastructure stack.
- Explicit experience securing Microsoft and AWS cloud infrastructures.
- Skilled in incident response investigation analysis, cross-functional team triage, containment, recovery, post-incident review and root-cause analysis.
- Security mindset and dedication to best-practice and continual improvement.
- Service oriented, collaborative, and solution-driven mindset first and foremost.
- Strong communication skills, attention to detail, and ability to self-organize while parallel-processing and driving projects to completion.
- Experience with standard principles and practices of project management and budget development, work planning and organization.
- Cybersecurity Certification such as CISSP, CISM, CCSP, or other equivalent certification highly preferred.
- Explicit experience implementing AI governance for the enterprise is a strong plus.
Benefits
- 401(k) matching
- comprehensive medical and dental plan options
- flexible PTO
Job title
Job type
Experience level
Salary
Degree requirement
No Education Requirement
Tech skills
Location requirements
Account Cybersecurity Lead providing cybersecurity governance and oversight at Capgemini. Leading client relationships, security management systems, and risk compliance oversight.
Cybersecurity Risk Coordinator at Globo ensuring operational security across digital content. Analyzing risks and developing strategies to enhance business resilience.
Senior SAP Security Specialist managing SAP Security responsibilities and projects. Collaborating on security tools and conducting workshops in Hamburg.
Sales Account Manager for Cyber Security and Awareness role at HvS - Consulting GmbH. Providing holistic consulting on Cyber Security services and managing client relationships.
Security Engineer at PRC - Saltillo safeguarding IT infrastructure from cyber threats. Collaborating with IT teams to design and maintain security controls in a hybrid work environment.
Information Security Manager leading cyber security initiatives at NVISO, enhancing clients’ security posture and managing a team of consultants in Germany.
Cybersecurity Assessment Expert at IT - Strat managing A&A of information systems for U.S. federal clients. Ensuring compliance with DOD cybersecurity policies and standards in complex IT environments.
Director leading Information Security at KPMG Budapest, developing programs and policies to align with global priorities and strategy.
Senior Security Engineer responsible for deploying and maintaining endpoint security solutions. Collaborating across teams to enhance security posture and supporting incident response activities.