The Lead IT Security Administrator will work as a leader within the Information Security Team and interact closely with other areas of IT, such as Application Development, Networking, Systems Administration, and Analytics, in addition to a variety of business units. This position will be responsible for identifying, planning, and managing enterprise security initiatives to protect the assets of R.D. Offutt Company. This role will require the identification and mitigation of risks by leveraging technology and security tools across the enterprise, as well as contributing to and managing security processes.

Specific Duties Include:

Lead security projects and initiatives which include facilitating meetings, monitoring progress, and collaborating with team members. Research and recommend innovative technologies and approaches to improve the security posture of the enterprise.  Solve problems using effective approaches by choosing a course of action or developing appropriate solutions; recommend or take action that is consistent with available facts,       constraints and probable consequences. Assist in architecting business solutions including on-premises and cloud infrastructure. Develop, review, and maintain documentation and response plans for security processes involving vulnerability management, SIEM, SOAR, EDR, etc. Work collaboratively across a variety of business and technical teams to ensure security measures are integrated into all aspects of the organization’s operations, which may include deploying new technologies, processes, and procedures. Stay up to date with the latest security trends, threats, and technology solutions. Provide guidance and training to staff on security best practices.  Assist in developing and driving the strategy on data protection, malware detection, network security, forensics, logging and monitoring, cloud security, identity and access management, and other related domains. Establish and monitor KPI’s, incorporating process improvements to increase performance. Serve as an escalation point as security incidents are being investigated and responded to and help to review alerts to identify trends and escalating incidents that require higher-level support and interactions from other teams. Review current security system definitions for correctness; monitor, report and investigate access to determine coverage for reporting unauthorized access attempts; provide continuous testing of systems for situations requiring corrective action. Evaluate and improve MITRE ATT&CK framework coverage and identify controls to address gaps and risks across the enterprise. Perform risk assessments and testing of data processing systems. Assist in reviewing prospective vendors and their security posture. Educate and lead staff on network and information security procedures. Expected to perform additional job duties as needed to support our customers and our enterprise.

Job Requirements:

Expert-level knowledge related to security technologies, processes, and investigative skills. Experience in medium scale enterprise environments (3000+ employees) Must be self-motivated, a continuous learner, and able to meet deadlines Strong knowledge of security frameworks and standards (e.g., ISO 27001, NIST CSF/800-53/800-82). Strong knowledge of regulatory requirements and standards (e.g., PCI DSS, GLBA, CPRA, HIPAA) 7+ years of operational experience with a variety of security tools involving vulnerability management, SIEM, SOAR, EDR, etc. must possess strong technical knowledge of SIEM related architecture, system rules, KPI’s etc. 7+ years of security architecture experience including on-premises and cloud architecture, deployment, event analysis, maintenance, or network security appliances. Strong verbal and communication skills; must be able to effectively communicate technical details and thoughts in non-technical/general terminology to various levels of management. Develop and use collaborative relationships to facilitate the accomplishment of work goals. Excellent organizational and time management skills. Maintains personal and management awareness of emerging industry security technologies, technology issues, regulatory issues and practices Candidates must have valid work authorization and be able to work in the U.S. without company sponsorship. 

Education:

Bachelor’s or higher degree in computer science, management information systems, cybersecurity, or related technical field – or related commensurate experience

Preferred:

2+ years in a leadership role. Master’s degree in computer science, cybersecurity, analytics, or a related field. Experience managing individuals, either directly or through dotted-line reporting relationships. Experience in Application Development Security. Experience with Operational Technology (OT) Cybersecurity. Certifications: Network+, Security +, SSCP, OSCP, CISA, CISSP, or other industry recognized security certifications.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities