Email Opening
Title

Manager, Information Security Operations 
Category Information Technology & Services  
Description

NeighborWorks America: Working Together for Stronger Communities

Purpose of Division:
Information Technology and Services (IT&S) is responsible for planning, design, implementation, and support of NeighborWorks' enterprise wide business applications and management of information technology resources and services. IT&S provides business applications and supporting services to identify, gather and efficiently organize the data that is required to support the business activities of NeighborWorks America (NWA) and its affiliated NeighborWorks Organizations. NeighborWorks America undertakes several major capital budget IT project initiatives to meet NWA's current and future mission, goals, objectives and ongoing business requirements.

Position Summary:
Reporting to the Director, IT Security & Compliance, Manager - Information Security Operations will assess threats and vulnerabilities, respond to immediate and potential threats, supports investigation and analysis of cyber and information security related events. Works with internal and external resources to proactively identify vulnerabilities, develop mitigation plans to address potential threats, and respond to immediate threats. The candidate is expected to be a seasoned security professional and team player with a strong drive for results and continual improvement. A well-qualified candidate will be comfortable working with executive and technical leadership around the company to inform on cyber threats and discreetly handle sensitive matters.
Essential Duties/Responsibilities:

  • Collaborate with appropriate teams to execute various security projects (upgrades, new implementations, etc.); evaluate and implement new security technology controls and solutions
  • Investigate and analyze many different types of security incidents, such as network-, host-, application-, and malware-based intrusions across a broad range of computing environments and technology stacks
  • Oversees the analysis of network, system, and security events to determine whether an incident has occurred and leads appropriate response actions
  • Creates incident after action summaries and develops recurring reports of enterprise incidents including but not limited to trends, remediation and prevention
  • Provides oversight to the managed detection and response provider/outsourced Security Operations Center (SOC)

  • Validate the effectiveness of our defensive systems, assess threats to the enterprise and proactively improve our security defense posture
  • Effectively communicate and/or summarize (in both verbal and written form) complex threat events or security incident details to multiple audiences, such as executives, legal, and technical staff
  • Provide remediation guidance and recommendations and coordinate with Information Technology & Services and other teams as needed to provide oversight to the remediation and/or mitigation of vulnerabilities
  • Research, build and maintain technology solutions and tools needed to support security incident response investigations and examine digital evidence (for example, network traffic, log, filesystem, memory, and malware analyzers and forensic toolsets); partner with technology teams to innovate solutions to improve preparedness
  • Continuous Control Monitoring including Baseline security Configuration monitoring
  • Manage/approve changes to network access control lists on specialized computer network defense systems (e.g., firewalls, cloud infrastructure security services and intrusion prevention systems)
  • Design and carry out security incident preparedness activities, such as compromise assessments and tabletop exercises, and conducting training and awareness sessions for relevant stakeholders, service providers and vendors


Nature of Work Contacts: This position interfaces with the leadership team within IT&S as well as sponsoring business units. These will include Directors and Senior Managers within IT&S and will collaborate with Director, Vice President, and Senior Vice President of business units who will be in the capacity of Business Sponsor, Business Process Owner and Business Process Subject Matter Experts.

Fiscal Responsibilities: Budget responsibilities for assigned projects and programs.

 
Position Requirements

Required Minimum Qualifications:
(a) Education and/or Experience:
A bachelor’s degree in computer science/information systems, engineering, business management or a minimum of one the following advanced information security certifications is required:

(b) Licenses and certifications
• CAP – Certified Authorization Professional
• CASP – Certified Advanced Security Professional
• CISM – Certified Information Security Manager
• CISSP – Certified Information Systems Security Professional
• CCSP – Certified Cloud Security Professional
• GCIH - GIAC Certified Incident Handler
5 - 8 years of information security operations center experience or related professional area.
2+ years experience implementing, managing or governing security technologies, including encryption, network security, intrusion detection and digital forensics
(c) Competencies, Knowledge, and Skills & Abilities:

Excellent interpersonal skills, presentation skills, and verbal / written communication skills
Self-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goals and initiatives
Ability to manage multiple priorities – projects, deliverables, and stakeholders
Ability to influence peers and management; ability to team cross-functionally and form relationships to achieve objectives
Active in the security industry; equipped with external networking relationships to maintain relevant knowledge of best practices, tactics, strategies and technologies.
Technical infrastructure operations, administration, or engineering background

Preferred Qualifications:

  • Knowledge of technology trends and developments in the areas Information Security Operations – forensics, threat intelligence, continuous monitoring and incident response
  • Knowledge of incident response and handling methodologies
  • Experience in a technical security role, including network security, operating system security, Internet or Web security, Data Loss Prevention (DLP), anti-malware, IDS/IPS, and penetration and vulnerability testing
  • Must have experience with Networking and operation tools (i.e. – Log management, Firewall management, SIEM, etc.…).
  • Deep experience of network and system vulnerabilities, malware, networking protocols, multi-tiered applications and attack methods to exploit vulnerabilities.
  • Knowledge of intrusion detection methodologies and techniques for detecting host- and network-based intrusions via intrusion detection technologies Knowledge of incident response and handling methodologies
  • Solid understanding of cloud based critical infrastructure systems and IT operations.
  • Knowledge of cloud specific risks and threats is required. Deep experience with cyber security in the domains of cyber threat intelligence and analysis, security monitoring and Incident Response for a cloud-based services environment
  • Possesses current knowledge of information technology concepts including application development, hardware platforms, operating systems, technical services, security, etc.
  • Extensive analytical, problem solving, and organizational skills with a focused attention to detail.
  • Experience developing Standard Operating Procedures (SOPs), job aids, and hands-on training materials
  • Knowledge and experience in Windows / Linux Operating Systems, baseline security configurations, audit, forensics, Patch Management for these OS
  • Familiarity of security and control frameworks such as CIS, ISO, NIST Cyber Security Framework, or experience with the Cyber Kill Chain® methodology

Working Conditions: Travel: Up to 10%. Occasional weekend or evening work may be required.
Physical/Sensory Demands: Fast paced working environment, extensive computer usage. Able to lift to 25 pounds.

Special Provisions: None.

 
Duration Continuous  
Salary Range  
Division IT Security & Compliance  
Department Information Technology & Services  
Travel  
Working Conditions  
Close Date 7/8/2019  
Location CORPORATE HEADQUARTERS: District of Columbia Office  
EOE Statement We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.  

This position is currently not accepting applications.

To search for an open position, please go to http://NeighborWorksAmerica.appone.com

WE ALSO RECOMMEND
Other Jobs Within Same Category
Senior Engineer, Cyber Security Operations in Washington, District of Columbia
Posted on: 4/22/2024
[Apply Now]

Other Jobs Within 60 Miles
Sr. Manager, Human Resources Business Partner (HRBP) in Washington, District of Columbia
Posted on: 4/19/2024
[Apply Now]

Senior Engineer, Cyber Security Operations in Washington, District of Columbia
Posted on: 4/22/2024
[Apply Now]
 


AppOne.comTM   copyright©1999-2021 HR Services, Inc.
Click here for technical assistance.