Manager, IT Security Resume Samples

4.8 (71 votes) for Manager, IT Security Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the manager, it security job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Resume Builder
CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Create a Resume in Minutes
WD
W DuBuque
Winifred
DuBuque
6956 Schoen Corners
Dallas
TX
+1 (555) 552 4102
6956 Schoen Corners
Dallas
TX
Phone
p +1 (555) 552 4102
Experience Experience
05/2016 present
Los Angeles, CA
Senior Manager, IT Security
Los Angeles, CA
Senior Manager, IT Security
05/2016 present
Los Angeles, CA
Senior Manager, IT Security
05/2016 present
  • Manage, participate in, or directly work on any additional projects, assignments, or initiatives assigned by management
  • Act as client’s liaison with SecureWorks Product Management /Development organization to support their service enhancement requests
  • Provide regular reporting on the information security program to the Senior Leadership Team, Internal Risk Management, audit committees, etc
  • Work directly with the business units to facilitate IT risk assessment and risk management processes
  • Create, communicate and implement a risk-based process for vendor risk management
  • Identify, select and manage security vendors to ensure that service delivery and support meet performance and business objectives
  • Assist with the development of IT Security staff through coaching and training to accomplish organizational, team, and service goals
06/2009 12/2015
Los Angeles, CA
Manager, IT Security
Los Angeles, CA
Manager, IT Security
06/2009 12/2015
Los Angeles, CA
Manager, IT Security
06/2009 12/2015
  • Driving all unnecessary costs out of the support model continuously improving the cost of delivering services
  • Planning responsibilities will be mostly tactical, with some strategic initiatives
  • Working PCI/SOX knowledge
  • Maintains confidentiality and protects sensitive data at all times
  • Forms a “center of excellence” for information security management, for example offering internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively
  • Excellence: Outstanding achievement, merit, virtue; continually surpassing standards to achieve/maintain quality
  • Compassion: Feeling with others, being one with others in their sorrows and joys, rooted in the sense of solidarity as members of the human community
02/2005 04/2009
Boston, MA
Manager IT Security
Boston, MA
Manager IT Security
02/2005 04/2009
Boston, MA
Manager IT Security
02/2005 04/2009
  • Provide expert advice and consultancy to customers and partners on Identity and Access Management (IAM) solutions
  • Lead, manage, and develop a team of Identity and Access Management (IAM) employees and contractors
  • Execute the implementation of the enterprise IAM solutions for applications, databases, and directories
  • Serve as an IAM subject matter expert (SME)
  • Set up and manage automated as well as manual provisioning workflows
  • Document detailed IAM business and technical processes
  • Provide provisioning administration training to Business and IT users
Education Education
Bachelor’s Degree in Computer Science
Bachelor’s Degree in Computer Science
Chapman University
Bachelor’s Degree in Computer Science
Skills Skills
  • Strong knowledge of healthcare processes
  • Ability to work in a high pressure, fast paced environment with rapidly shifting priorities; ability to
  • Vulnerability management
  • Excellent written and verbal communication skills
  • Strong problem solving and analytical capabilities
  • Strong change management skills; change agent
  • Strong skills and experience in the following
  • Leads or commissions suitable information security awareness, training and educational activities
  • Knowledge of the following security applications: End Point Protection, Web content filtering, NGFW Firewalls, DLP, AV / Malware, Log Collection/Filtering, MDM
  • Strong influencing and negotiation skills
Create a Resume in Minutes

15 Manager, IT Security resume templates

1

Manager, IT Security Resume Examples & Samples

  • Builds and maintains a 24 hour, seven days a week (24x7) support organization
  • Develops and implements standards and procedures to effectively utilize staff and resources
  • Analyzes resource usage and requirements to project capacity needs
  • Produces Operations Service Center Metrics
  • Provides input to, and assists with the preparation of, the annual budget, as well as assists with monitoring the department budget, including the monthly comparison process
  • Planning responsibilities will be mostly tactical, with some strategic initiatives
  • Contributes to execution of key strategic initiatives and contributes to departmental strategic planning
  • Recommends policies and creates procedures
  • Minimum of a B.S. in Computer Science, MIS or related degree and five (5) years of related experience including management or leadership experience or a combination of education, training and experience
  • Financial services industry experience preferred
  • Skilled in Customer Support, Training, Vendor Management, Project Management, Enterprise Implementation, Metrics Development, Measurement and Reporting
  • Leverages systems & processes to attract, develop & retain talented individuals
  • Creates a trusting work environment where people can realize their full potential. Enhance Client Experience
  • Ensures customer perspective is driving force behind business decisions and activities
  • Ensures customer solutions, practices and procedures are carried out and achieve their objectives
  • Builds strategic partnerships within the organization to collaboratively execute business goals
  • Interacts with others in a way that promotes openness & trust and gives confidence in one’s intentions. Advances Strategic Opportunities
2

Lead Program Manager IT Security Resume Examples & Samples

  • Serves as leader of information security improvement projects
  • Manages one or more projects in data center, network center, or end-user support services
  • Responsible for identifying appropriate resources needed, assigning individual responsibilities, and developing schedule to ensure timely completion of project deadline
  • Coordinates communications, issue resolution, implementation and testing plans, training plans and successful transition to support and maintenance teams
  • Bachelors Degree (or a minimum 4 years equivalent work experience) with a minimum 2 years IT experience
  • Experience developing and executing project plans
  • Demonstrated success at project management
  • Possesses analytical and negotiation skills
3

Manager IT Security Infra / ops Resume Examples & Samples

  • Lead the implementation of the team's strategies and plans
  • Provide effective change leadership in driving continuous improvements and innovations
  • Act as an ambassador to other departments within IT by collaborating and building consensus for security initiatives
  • Oversee the effective management and planning for optimal execution and implementation of projects as appropriate
  • Lead, establish and manage an effective and collaborative team that delivers a balanced approach to security focused on enabling business
  • Participate in development of the IT security strategy and roadmap
  • Review, analyze and interpret financial and budgetary reports
  • Collaborate with IT partners to develop both short and long-term strategy
  • Provide leadership to security engineering and architecture teams
  • Lead the team in maximizing value from the portfolio of security tools and infrastructure in which we have invested
  • Lead the team in developing processes and procedures to maximize uptime of security infrastructure
  • Provide sound decision making for selection of new security tools
  • Monitor technology trends including emerging technology and new technology opportunities
  • Participate in the management of vendor relationships including the negotiation of new contracts and support terms
  • Monitor and ensure team's adherence to best practices, operational regulatory compliance processes and procedures along with other IT processes, procedures and delivery criteria
  • Deploy resources effectively and efficiently to work on projects by participating actively in resource management processes
  • Monitor the scheduling of all work assignments for the team
  • Ensure that delivery dates are met with high-quality deliverables
  • Provide appropriate counseling, coaching and career path planning of each individual on the team (e.g. performance reviews, development plans, etc.)
  • Oversee and administer the portfolio of technical resources – coaches, mentors, evaluates staff
  • Participate in managing the technical relationships with the vendors that support the security and platforms at RH. Involved in negotiating terms of new contracts and SLAs
  • BA/BS degree in applicable field or equivalent experience
  • Optional: Certified Information Systems Security Professional (CISSP)
  • 7+ years’ of progressive IT security management including both engineering and operations experience with proven ability to deliver business objectives and develop a strong team environment
  • 7+ years’ of progressive IT security management
  • 7+ years’ demonstrated ability to manage/drive medium to large scope enterprise-wide projects
  • 4+ years’ previous experience managing IT Security Engineering and Operations functions – managing infrastructure, engineering, incident response and investigations, implementation and support/maintenance services
  • Practical technical and business domain experience relative to information security engineering and operations
  • Solid background in current technology (i.e., IDS/IPS, DLP, firewalls, endpoint protection, SIEM, vulnerability management, application security tools, etc.)
  • Experience managing teams of 8+ resources
  • Progressive understanding of project implementations (e.g. management of scope, timeline and budget)
  • Proven ability to design and refine team processes for optimum performance
  • Solid understanding of and experience with management of IT Security Engineering and Operations
  • Previous experience in budget development and management
  • Previous experience managing and negotiating with large-scale vendors
  • Demonstrated ability to develop highly skilled, effective and collaborative teams
4

Manager, IT Security Resume Examples & Samples

  • Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations
  • Leads or commissions information security risk assessments and controls selection activities
  • 10 years Information Technology experience including at least 4 years in Security
  • At least 4 years of management experience required
  • Previous experience in Networking/Infrastructure
  • Previous experience supporting eCommerce site from security perspective
  • Working PCI/SOX knowledge
  • PEN Testing knowledge
  • Certifications in security highly desired
  • B.S. Degree in Computer Science or related discipline strongly preferred
5

Senior Manager, IT Security Resume Examples & Samples

  • Evaluate and mitigate IT security risks from both internal and external sources
  • Establish standard procedures and controls to ensure ongoing compliance
  • Ensure a robust Incident Response process to all security threats
  • Coordinate with UTC corporate IT to develop and implement policies and procedures related to information security and policy compliance
6

Manager, IT Security Resume Examples & Samples

  • Manage vulnerability testing on our networks, systems and applications
  • Produce actionable reports on security testing results with recommendations
  • Act as an in house consultant to help application support teams implement secure solutions
  • Work with the Global IT team to remediate issues in accordance with all global polices, standards & mandates
  • Working with a team of resources comprised of on-/off-shore suppliers and SPE employees in day-to-day monitoring, supporting, maintaining and enhancing a set of vulnerability management systems
  • Maintaining, or working with on/off-shore suppliers to maintain, all resources planning and time allocations as well as maintenance/enhancement tracking in the appropriate tools/tracking system
  • Driving all unnecessary costs out of the support model continuously improving the cost of delivering services
  • Management of application development/integration projects, including: tracking risks, issues, project budgets, developing project plans, keeping projects on track and setting/managing user expectations
  • Working with Service Delivery Managers to define application changes, negotiate priorities and implementation dates, agree on service level standards, and ‘partner’ for success with regards to predefined remediation mandates
  • Manages multiple teams, or teams of suppliers, supporting applications covering one or more functional areas
  • Proactively uncover opportunities for service improvement within ADM (Application Development & Maintenance) and with offshore development partners
  • 7+ years of Information or IT Security Experience
  • Reviews and approves service level standards and reports
  • Experience using vulnerability scanning and application security solutions in an enterprise environment (e.g., Qualys, Nessus, Nexpose, OpenVas, WebInspect, Burpsuite Pro, Metasploit)
  • Ability to read and understand application code or scripts such scala, java, bash, python, etc
  • Experience performing vulnerability assessments and penetration tests on networks, systems, and applications as part of a team or individually
  • Ability to communicate vulnerabilities and testing results clearly and at a level that other IT professionals can easily understand
  • Strong working knowledge of Windows client/server, Unix/Linux systems, Mac OSX, VMware/Xen, and Cloud technologies like AWS and Azure
  • CISSP, CISM, ITIL Certifications preferred
7

Manager, IT Security Integration Resume Examples & Samples

  • Proven project experience and release management participation
  • Proven track record of successful delivery of projects to budget, schedule and quality measures
  • Ability to lead and manage multiple teams
  • Experience in making sound decisions and judgements under stress (to resolve project roadblocks and issues)
  • Exposure to business and the technology that supports that business
  • Conceptual knowledge of large-scale software development
  • Awareness of Project Management Body of Knowledge areas
8

Senior Manager IT Security Resume Examples & Samples

  • Manage and insure sound security processes over the Bank's high risk centralized data processing and associated telecommunication links while meeting Project Delivery and Availability objectives, ensuring that capabilities of supporting security software continue to be used to meet the Bank's requirements. This will require addressing and resolving complex processing and technical problems, which will often have a direct impact on customer services. The incumbent will also develop proposals for tools, processes, policie
  • Act as a liasion with all levels of management and technical support personnel in order to provide relevant information and recommendations whenever the Bank's critical processing deadlines could be in jeopardy, and/or unacceptable information security risk may exist
  • Maintain and improve as required, the Bank’s documented ‘Denial of Service’ procedures in the event of a DoS attack including invocation of C.I.R.T. and liaise with ISPs and third party service providers and monitor network availability/performance to identify attacks and/or network probes associated to denial of service
  • Continuously and consistently need balance conflicting requirements relating to security protection and the cost of controls, and the needs of day-to-day operations to deliver ScotiaService; the allocation of resources between daily routine operations and project/investigation activities, and the ongoing protection of the Bank while
  • Perform continuous monitoring and reporting of inappropriate Email and Internet usage in a timely manner
  • Continue to improve overall Network Security processes including feedback to areas under review regarding deficiencies
  • 7-10 years of IT Security and business/industry work experience and is required to keep current with emerging trends, directions and issues in information security technology and auditing frameworks, to be aware of best practices in the financial services industry and to build up "networks" and utilize contacts in industry associations and other organizations
  • Ability to assess new practices, products and events and formulate positions accordingly, leading to the development and implementation policies, standards, technology and guidelines, as appropriate
  • Experience dealing with non-compliance situations, conduct an analysis to determine the extent of the problem and accurately report and recommend appropriate action. The incumbent is expected to explain security risks and associated controls to Executive and Senior Management in as constructive and concise manner as possible
  • Experienced in vendor management, including contract negotiations. They will be required to effectively communicate with other officers, vendors, third parties and Audit functions. As such, a working knowledge of Spanish or any other related language
9

Manager, IT Security Resume Examples & Samples

  • University degree in the field of computer science or business administration or comparable work experience. Master’s or PhD. degree in one these fields preferred
  • Proven experience in planning, organizing, and developing IT security
  • Experience in planning and executing security policies and standards development
  • Excellent knowledge of technology environments, including information security and defense solutions
  • Considerable knowledge of business theory, business processes, management, budgeting, and business office operations
  • Excellent understanding of project management principles
  • Demonstrated ability to apply IT in solving security challenges
  • In-depth knowledge of applicable laws and regulations as they relate to security
  • 5 years of experience managing and/or directing an IT operation and/or security governing functions
  • 5 years of experience working in the automotive industry
  • Must be a team player, highly motivated, demonstrate a high degree of confidentiality, discretion, integrity and professionalism in all aspects of the job
  • Superior analytical, evaluative, and problem-solving abilities
  • Exceptional service orientation
  • Proven leadership ability
10

Technical Program Manager, IT Security Resume Examples & Samples

  • Move fast in a flat organization by managing technical information security programs using lightweight approaches
  • Articulate the technology, requirements, goals, and milestones to stakeholders
  • Conduct ongoing communication of your program and reduce surprises by proactively managing risks
  • Own and develop key metrics for your security program, and provide transparency for changes to corporate security risks
  • Make your program transparent with great documentation, training sessions/tutorials, and blog posts
  • 3+ years of experience in technical project management in IT security engineering/equivalent technical experience
  • Experience in securing large scale corporate IT infrastructures, including mobile, client and servers of mixed platforms (i.e. windows, linux)
  • Strong organizational skills, excellent communication, interpersonal skills, and ability to work across highly technical cross functional teams
  • Experience working in a web/internet start-up environment and/or technical infrastructure management experience
  • Ability to motivate and adapt to different working styles based on teams involved
  • Experience with SQL and other query languages used for reporting & dashboards
11

Manager, IT Security Resume Examples & Samples

  • Take the lead in ensuring that application security requirements are identified early on and are being included in to all information technology projects
  • Attend design and application architectural reviews and actively provides feedback to the discussions from a security standpoint
  • Identify application security risks and requirements for new information technology projects
  • Develop security test plans and integrate into the software development lifecycle
  • Perform/oversee security testing and direct information technology teams in the remediation efforts of security findings
  • Explains risk and trade-offs in differing methods of remediation
  • Supports sign-off on application security prior to live implementation
  • Provides written reports featuring validation evidence, exposure, remediation recommendations, and overall risk status, to explain security to both executive management and technical teams
  • Work with third party suppliers to conduct security risk assessments, promote secure design, and security testing
  • Participates as a subject matter expert in the company security incident response program
  • Work with the Parks & Resorts Compliance Team to support compliance requirements and investigations
  • Performs additional duties as assigned
  • Bachelor's degree or equivalent in Computer Science, Management Information Systems or related field with an accompanying security accreditation (i.e., CISSP, CISA, or CISM)
  • 10+ years of information security experience
  • 7+ years of security risk assessment and/or risk analysis experience
  • 3+ years of experience with security auditing and/or security compliance validation
  • Knowledge of security related legislation/regulations with emphasis on Sarbanes-Oxley, PCI, and privacy
  • Ability to demonstrate aptitude, interest, and passion in keeping up with information security technical trends, research, and current development
  • Experience with performing Assessments of guest and corporate wireless networks to identify approved and rogue wireless networks and ensure wireless networks are configured security
  • Experience with vulnerability management, Network and Host-Based Intrusion Detection, antivirus, and anti-spyware solutions and monitoring processes
  • Good communication in English, both oral and written (presentations, technical reports and proposals)
  • Demonstrated ability to handle confidential information
  • GIAC GCIH, GPEN, and GAWN certifications would be advantageous
  • Strong analytical and problem solving skills with an ability to develop creative alternatives to security issues or complex problems, as well as, continuous process improvement process skills
  • Strong organization skills to balance work and lead projects with attention to detail
  • Ability to influence a wide variety of individuals at different levels
12

Project Manager IT Security Resume Examples & Samples

  • Lead overall project execution in partnership with program teams and functional resources
  • Develops and maintains comprehensive project plans that include resource assignment, implementation tasks, testing, training, and ensures successful transition to support teams
  • Coordinates daily project activities, issue resolution and communication across program team
  • Manages budgets associated with projects or initiatives
  • Clearly communicate status, issues, risks, plans, etc. to the functional Leadership
  • Identifies critical path decisions, makes recommendations and influences program leaders and business process owners to maximize financial measures
  • Learn and adhere to GE Healthcare project management methodologies
  • Aware of and comply with the GE Healthcare’s Quality Management System, Security Policies, applicable laws and regulations as they apply to this job type/position
  • Demonstrated project management skills including project initiation, scoping, resourcing, scheduling, budgeting, risk management and communication
  • Project management experience with lean or agile methodologies a plus
  • Experience with incident, problem, change and configuration management processes
  • Experience with either IT compliance / risk methodologies or IT security technologies
  • Experience with ISO Controls, Sarbanes-Oxley, Cloud Technologies or Cyber Security a plus
  • Excellent written and verbal communication skills and ability to interface and influence at all levels in the organization
  • Demonstrated ability to excel in a global matrix organization and function within a team
  • High level of ownership, accountability and ability to manage confidential information with a high degree of integrity
  • Proactive, self-learner and willingness to adopt to changes
  • BSC Degree in Information Systems, Computer Science or related technical discipline or equivalent
  • Significant IT experience with focus on management or deployment of infrastructure and applications in business environment
  • Black Belt certified
  • Lean experience
  • PMP or ITIL certified
  • Experience in the healthcare industry
13

Manager IT Security Resume Examples & Samples

  • Provide expert advice and consultancy to customers and partners on Identity and Access Management (IAM) solutions
  • Lead, manage, and develop a team of Identity and Access Management (IAM) employees and contractors
  • Develop project documentation such as requirement documents, process diagrams, end-user guides, and strategy presentations
  • Execute the implementation of the enterprise IAM solutions for applications, databases, and directories
  • Serve as an IAM subject matter expert (SME)
  • Document detailed IAM business and technical processes
  • Provide provisioning administration training to Business and IT users
  • Perform user acceptance testing (UAT)
  • Conduct quality assurance (QA)
  • Bachelor's Degree in MIS/Computer Science -OR- Associate's Degree and 2 years of equivalent experience -OR- High School Diploma and 4 years of equivalent experience
  • 6+ years of Identity & Access Management (IAM) Architecture experience
  • 6+ years of people management experience
  • 4+ years of project management/coordination experience
  • 4+ years of IAM system experience such as SailPoint IIQ, CA Identity Manager, or similar toolset
  • 4+ years of Role Based Access Control (RBAC) experience
  • 4+ years of Active Directory administration
  • 2+ years of Database Experience
  • Ability to host in-person as well as teleconference meetings
  • Relational database experience
  • Proficiency with MS Excel, MS Visio, MS SharePoint
  • CISSP, CISA, or CISA certification
  • Working knowledge of System Development Lifecycle (SDLC)
14

Service Manager, IT Security Services Resume Examples & Samples

  • Service accountability for all IT Security Services in scope
  • Working in alignment with IT Security organisation unit in Novo Nordisk HQ, Novo Nordisk US
  • Ensure Novo Nordisk best practices are employed in management of Services
  • Liaison with all necessary parties especially vendors, project teams and customers towards a coordinated Services delivery
  • You have 7+ years’ experience working within IT Infrastructure, IT Security
  • Worked as Service manager in the areas of Infrastructure and IT Security Services
  • 3+ years working with key stakeholders and decision makers outside India in an international environment
  • Technical management experience from an international service or consultancy firm
  • You are service minded and have a strong interest in IT combined with business administration, contract and finance management
  • You have a desire to keep close interaction with stakeholders
  • Personality who likes to be self-driven with large degree of flexibility & ability to work under high time pressure while maintaining a good sense
15

Manager IT Security Resume Examples & Samples

  • Assist in development and implementation of information security policies and procedures
  • Research and report on existing and emerging cyber threats, particularly those directed against the healthcare and financial sectors
  • Provide reporting and briefings to other teams within IRM as well as IRM leadership in order to maintain appropriate levels of situational awareness
  • Overseeing a team within CIS and additional administrative duties; these duties may include conducting annual reviews of direct reports, overseeing of timesheet completion and other duties as assigned
  • 3+ years in Security intelligence, preferably with a cyber focus
  • Experience with tracking and predicting emerging industry trends
  • Experience and understanding of standard Tactics, Techniques and Procedures (TTPs) utilized by cyber actors
  • Familiarity with various naming conventions pertaining to cyber actors
  • CISSP, CEH, or other Security certifications
  • 3+ years in Cyber Security intelligence
  • Previous Intel Agency experience, ex (NSA, DIA, Cybercon)
  • Previous Manager or Leadership experience
16

Manager, IT Security Monitor & Response Resume Examples & Samples

  • Proactively seek, monitor for and respond to security incidents, as well as perform personnel investigations
  • Monitor for external threats, assessing risk to the KPMG environment and driving risk mitigation and response activities
  • Identify and incorporate threat intelligence into monitoring tools and incident response processes
  • Balance and optimize MSSP services with in-house monitoring and detection capabilities to effectively leverage capabilities
  • Define, document, test and manage incident response processes; mature and integrate processes and technologies, with the objective of the continued development of a “single plane of glass” for monitoring and comprehensive incident response process
  • Stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace; lead internal skills development activities for information security personnel on the topic of security monitoring and incident response, by providing mentoring and by conducting knowledge sharing sessions
  • Minimum five years of progressive security monitoring experience, security operations, and incident response activities; preferably within a professional services firm or similar environment
  • Bachelor’s degree from an accredited college or university
  • Ability to lead meetings, divide responsibilities, and influence people to take action to assist in the resolution of security incidents
  • Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, and segregation techniques and technologies such as IDS, IPS, SIEM, endpoint forensic tools and proxies; experience will malware analysis
  • Strong verbal and written communication, with ability to effectively interact with individuals at all levels of responsibility and authority; must be able to prioritize, delegate and foster the development of high performance teams to lead and support an environment driven by customer service and team work; strong trouble-shooting and organizational skills and ability to work on multiple projects simultaneously; ability to participate in resource planning processes based on defined organizational plans
17

Manager IT Security Resume Examples & Samples

  • Analysis of network data (packets, logs) and endpoint data (logs, malicious artifacts) in both structured and unstructured methods
  • Analysis of malware (executables, scripts, etc.) to determine indicators of compromise, and create signatures for future detection of similar sample
  • Participate in exercises to simulate attacks and determine responsiveness of processes and procedures
  • Creating a feedback loop with security control owners to help tune systems based on the results of investigations
  • Acting as a high tier escalation point for security incidents to provide technical expertise to the incident response process
  • Bachelor's degree in computer science or a related discipline, or equivalent work experience
  • 5+ years of experience in information security or related technology experience
  • Proficiency in a Linux command line environment (awk, sed, grep, etc.) or Windows equivalent (PowerShell) to analyze log files and other data sources and summarize data and locate anomalies
  • Advanced degree in computer science or related discipline
  • Proficiency in a scripting language (Perl, python, etc.) to automate common tasks
  • A U.S. Government Security Clearance
  • Industry certifications such as CISSP or GCIH
  • Working experience in the Healthcare or Government sector
18

Manager IT Security Resume Examples & Samples

  • Engaging business and executive leadership in assessing and addressing security risk specific to the PCI Data Security Standard (DSS)
  • Providing metrics in collaboration with cross-functional teams that demonstrate current state of risks, indicators of progress, and business alignment. Executes follow-through by helping projects and programs build capabilities that provide data required to support metrics
  • Works in active partnership with business stakeholders and technical stakeholders (solution, infrastructure, and application architects) to perform PCI DSS security risk assessments
  • Develops security domain expertise and technical objectives that will enable successful and secure delivery of project and program goals, thereby supporting the growth and evolution of UnitedHealth Group
  • Ensuring that operational and incident trends in security are considered in weighing security controls and remediation recommendations
  • Contributing to security governance and a clear comprehensive security framework. Promote those requirements through partnership with enterprise architecture and IT governance functions
  • Provides recommendations for enterprise security controls, security policies, and security control standards to enhance PCI Program operational practices
  • Inspiring creativity, innovation, and technical leadership with peers using PCI DSS
  • Supporting the on-going assessment and measurement of risk objectively and consistently by leveraging and improving team processes
  • 3+ years of experience providing technical leadership and operational support for complex enterprise security projects/programs for large enterprise organizations
  • Experience conducting and applying vulnerability modeling to large and complex and virtualized architectures
  • Knowledge of infrastructure, application, and data security best practices
  • Fluency with IT governance standards including NIST, COBIT, ISO 27001, OCTAVE, ITIL
  • Experience complying with regulatory guidance such as PCI and HiTRUST
  • Experience executing security assessments within agile or waterfall methodologies
  • Industry-specific certifications, including one or more of the following: C|CISO, CISSP, CISA, CISM, CRISK
  • Specific experience leading programs from requirements through implementation
  • Experience working with large tier security vendors leading RFI/RFPs
  • Undergraduate Degree in engineering, computer science or relevant work experience
  • Ability to travel (25% monthly travel)
  • Master's degree in Information Security, Software Engineering
  • Demonstrated knowledge or hands-on experience with penetration testing, vulnerability and threat management, secure code analysis, system hardening (DISA STIG, CIS, NSA)
  • Demonstrated knowledge or hands-on experience with web application firewalls, secure application design frameworks, secure systems/software development life cycle, Cloud Security Alliance (CSA)
  • Demonstrated knowledge or hands-on experience with network technologies, common application ports and protocols, firewall rule management, network security fundamentals (DDOS protection, NIDS, IPS, VPN), common network attacks and vectors
  • Demonstrated knowledge and hands-on experience with private and public cloud computing architectures (Microsoft Azure, Amazon AWS, Salesforce)
  • Demonstrated knowledge or hands-on experience with Identity and access management technologies (Microsoft Active Directory, SAML, OAuth, Password Vaulting), Two-factor authentication solutions
  • Experience implementing data encryption solutions for structured and non-structured data that comply with common encryption standards (NIST FIPS 140-2, NSA Suite B)
19

Manager, IT Security Risk Assessment Resume Examples & Samples

  • Liaise with IT and other representatives of assigned business functions to ensure that project pipelines are understood and that project priorities are reflected in IT Risk & Security's resource planning
  • Function as a subject matter expert in several IT security domains (e.g. access control, cryptography, monitoring, etc.)
  • Help design and improve the security testing artifacts and process; create security testing plans and test cases
  • Provide guidance to developers on recommended controls and countermeasures; present test findings and interface with stakeholders; liaise with external 3rd party pen testers as required
  • Develop detailed work plans, schedules, resource plans for recurring penetration tests; establish and report on metrics to gauge pen testing effectiveness, progress and key risk areas identified through audits
  • Monitor remediation activities; maintain awareness of the current security threat landscape
  • Minimum five years experience performing IT security risk assessments and experience in Information Security IT
  • Bachelor's degree from an accredited college or university; CISSP certification preferred
  • Understanding of security principles, IT security controls and related technologies and products; experience in Information Security
  • Experience with performing code review; experience with mobile application testing is a bonus; in -depth knowledge of any proxying tools such as Paros, Burp, WebScarab
  • Must have GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), Certified Information System Security Professional (CISSP) or equivalent certification
20

Manager, IT Security Monitoring & Response Resume Examples & Samples

  • Lead the implementation of processes and procedures supporting the tools and technologies that enable review and assessment of system configurations, as well as the monitoring of unauthorized changes
  • Leverage dashboards or platform specific consoles and repositories including third party security services associated with security processes and tools to represent threats and vulnerabilities in the environment
  • Perform instrumentation oversight of security tools and information security monitoring of systems that are operated by the IT organization
  • Execute the auditing processes of security configuration such as firewall rules, and database configuration in addition to working with various teams on analysis and remediation activities
  • Test the operating effectiveness of information technology security controls to ensure they are functioning as designed by validating consistency across platforms, similar controls and coverage across the enterprise, as well as reviewing key metrics from related management tools
  • Continuously monitor and address gaps or weakness in the security technology controls in the environment
  • Minimum five years of experience in security monitoring, IT auditing, security operations, and/or security engineering activities; preferably within a professional services firm or similar environment
  • Understanding of network, desktop and server technologies, including experience with technologies to implement standard configurations and technologies to audit configurations and monitor for unauthorized changes such as Symantec Control Compliance Suite, Qualys Policy Compliance (PC), Windows Global Policy Objects (GPOs), VMware vCenter Configuration Manager, SUNWjass, Bit9, Tufin SecureTrack
  • Ability to facilitate meetings, track work, collaborate and influence people to take action to assist in the resolution of security gaps; strong written and verbal communication skills with the ability to understand complex problems while formally presenting them simplistically
  • Strong verbal/written communication, with ability to effectively interact with individuals at all levels of responsibility and authority; must be able to prioritize, delegate and foster the development of high performance teams to lead/support an environment driven by customer service and team work; strong trouble-shooting and organizational skills and ability to work on multiple projects simultaneously; ability to participate in resource planning processes based on defined organizational plans
21

Senior Manager, It-security & Risk Resume Examples & Samples

  • Define, implement, operate and enforce appropriate security controls throughout the IT organization, based on security policies and standards developed by the Security team and Architects
  • Deliver best practice execution, interpretation and compliance with IT security policies and procedures, including Sarbanes Oxley and risk management approaches
  • Work with internal teams and third party vendors to implement the relevant security policies and procedures, including regulatory and legal requirements
  • Ensure compliance is in place for relevant security policies and procedures, including regulatory and legal requirements
  • Monitor security including events, logs, and reports from intrusion prevention/detection systems, anti-virus, and other monitored systems
  • Respond to security escalations and investigations from automated sources (IDs, logs etc.) and non-IT sources including internal HR, Legal, and external requests
  • Actively investigate the latest security vulnerabilities, advisories, and incidents
  • Interpret security event activity, identify security vulnerabilities and initiate incident response when applicable
  • Inform CISO, IT and Kraft Heinz business stakeholders of any issues that may severely impact IT security
  • Own the resolution of security incidents with internal and third party suppliers
  • Escalate security incidents to the appropriate resolver group (Technology Operations, application support or SAP Center of Excellence) for resolution
  • Ensure Service Desk and Service Delivery Managers are kept informed about the status of security incidents
  • Manage forensic investigations where necessary
  • Act as a gatekeeper for the use of Kraft Heinz information and IT assets, responding to security requests in line with policies and standards
  • Manage the IT security aspects of the disclosure of sensitive information or data to third parties
  • Manage and monitor the information security risk management process for IT services to define and implement an appropriate level of confidentiality, availability and integrity of Kraft Heinz data and systems for each service
  • Provide support for legal requirements such as litigation support, e-discovery and suspension orders as required
  • Manage and deliver information security projects
  • Provide consultation to IT projects (including 2 factor authentication, IT and SAP Center of Excellence projects) on the testing, deployment, execution and management of IT security for new and enhanced services (including penetration testing)
  • Develop, test, evaluate, implement and monitor new or enhanced security systems, tools, devices, ruleset changes and products to support the defined security architecture, policies and standards
  • Participate and co-operate in internal and external security audits as required
  • Build awareness of information security policies throughout the company
  • Champion security policies and standards within and outside Kraft Heinz IT as essential components in the delivery of IT to the business
  • Lead, motivate, develop and appraise security team members so that their individual and collective performance is of the required standard and meets the current and future needs of the Heinz business
  • Extensive experience in operating, monitoring and enforcing security policies, standards, tools, controls and systems in large scale organizations
  • Acknowledged as an expert in IT security threats and control strategies to cope with them
  • Experience of working within a quality, compliance and security management framework
  • Strong operational experience across large scale, complex organizations
  • An ability to leverage expertise and best practices technically across the globe to optimize performance
  • An ability to work effectively in a matrix organization is essential
  • Considerable technical knowledge and experience in multiple aspects of information security operations
  • Technical credibility and independent judgment and decision-making responsibilities on all information security matters
  • Ability to maintain current knowledge of all relevant security technology, operations and management developments and seek opportunities to deliver new technologies that benefit the Kraft Heinz business
  • Ability to operate effective security solutions that meet functional, technical, and performance requirements
  • Excellent performance management skills with the ability to coach direct reports to develop their capabilities
  • Ability to successfully deliver in a global environment with different cultural challenges
  • Good problem-solving and analytical skills, able to determine the impact of issues quickly to prioritize corrective actions
  • Relationship management skills, ability to build and create a strong internal network across levels within Kraft Heinz
  • Sound decision-making skills
  • Excellent communication and presentation skills (both written and oral)
  • Highly effective planning and prioritization skills
  • Ability to take the high level view
  • SAP Security experience a plus
22

Manager IT Security Resume Examples & Samples

  • Develop strategy, implementation and communication plans for the EIRA program including Acquired Entities and segment managed businesses
  • Partner with Business and IT SMEs and senior leaders across UnitedHealth Group and it’s family of businesses to quantify risk and determine best practice remediation plans
  • Summarize and review information risk posture to inform IRM leadership for the purpose influencing IRM information security policy
  • Issue EIRA summary reports to authorized external auditors and regulatory agencies to support HIPAA Security Rule compliance
  • Collaborate with senior ET leadership to develop a personalized view risk across their business
  • Develop and maintain an executive dashboard to provide senior business leaders with a the status of their action plans
  • Develops subject matter expert resource plan and partners with leaders in UnitedHealth Group for finalization
  • Launch and manage the EIRA schedule and plan
  • Commence review teams to review EIRA questionnaires to identify risks to the organization
  • Analyze risk data gathered from EIRA questionnaires to prepare a summary report for senior leaders within Information Risk Management, Acquired Entity or Segment-managed businesses
  • Provide work direction to the OGS team to ensure that findings and action plans are recorded in eGRC and followed up on with action plan owners
  • Present summary risk data to senior IT and business leaders of UHG, Acquired Entities and Segment-managed Entities about identified risks
  • Bachelor's Degree OR 5+ years of equivalent experience
  • 3+ years of experience with risk frameworks or methodologies
  • 3+ years of experience working with security policies
  • Knowledge of risk frameworks (HITRUST, ISO, COBIT)
  • CISA/ CISM certification
  • Archer eGRC Framework experience
23

Project Manager IT Security Resume Examples & Samples

  • Manage agile and or waterfall development teams as a full lifecycle project manager (planning of all tasks, progress verification, manage dependencies to other IT or business teams, solution development – including organizing/managing infrastructure topics such as ordering of infrastructure components, test planning, test management, application deployment planning and execution, handover to support organization and post deployment support)
  • Ensure that planned scope is delivered to the required time, quality and costs
  • Collaborate with key stakeholders to make sure that stakeholder expectations are met
  • Support the Programme Manager(s) in delivery of the strategic objectives of the programme(s) the assigned projects are part of
  • At least two to five years’ experience working as an IT project manager
  • IT Security experience strongly preferred
  • Experience of managing geographically distributed development/project teams
  • Solid communication skills and experience around stakeholder management and communication with senior management as part of stakeholder boards
  • Prior Credit Suisse (or Banking) experience would be helpful
24

Manager, IT Security Resume Examples & Samples

  • Responsible for technology-related compliance issues across the organization, including information security, business continuity and Identity and Access Management
  • Promotes the development of communications and supports all related campaigns for Information Security and IAM awareness
  • Guides development of the compliance team's capabilities, capacity, and skills
  • Collaborates & coordinates with other internal controls-focused areas such as Security, IT Attestation PMO, Other IT Attestation teams, and business compliance areas
  • Reviews the development, testing and implementation of appropriate security plans, products and control techniques
  • Mentors, coaches and assigns work to the team in the areas of designing, performing, and evaluating the current testing of controls while maintaining and improving the process for evaluation of IT controls through a combination of automated testing and interviewing. Evaluates the frequency and scope of IT control testing
  • Mentors, coaches and assigns work to the team in the areas of Identifying and tracking control deficiencies/unmitigated risks in the environment
  • Hires and manages team of individual contributors. Determines and manages staffing strategy and plan (# of FTEs, skills needed, depth of experience, internal and external staffing mix) consistent with the needs of the business unit
  • Sets department direction and motivates staff to achieve direction
  • Establishes financial plan for department and manages to plan
  • Bachelor's degree in Computer Science, Accounting or a related discipline and at least eight plus years of work experience in internal audit, external audit, or SOX program or an equivalent combination of education and work experience
  • Requires extensive knowledge of internal controls and regulatory mandates
  • Requires strong interpersonal communication skills, analytical ability, detail orientation, a quality focus, and problem solving skills as well as a broad knowledge of business function(s), information technologies and the audit/ compliance practice body of knowledge
  • Demonstrated project management skills with proven track record for delivering results
  • Must have the ability to achieve results through others
  • Experience with Implementing Vendor Tools and Vendor Management
  • Ability to thrive in a fast-paced, complex technical environment
  • Familiarity with the Agile Methodology
  • Excellent communication, negotiation, presentation and consensus building skills
25

Manager, IT Security Risk Assessment Resume Examples & Samples

  • Liaise with IT and other representatives of assigned business functions to help ensure that project pipelines are understood and that project priorities are reflected in IT Risk and Security's resource planning
  • Continuously improve the security aspects of operating processes
  • Perform information security risk assessments of technology enabled projects; Activities include vendor reviews, security requirement definition, facilitation of security testing and management of residual risk
  • Advise and assist project teams regarding compensating control alternatives where security requirements cannot be met
  • Act as the primary point of contact between IT project teams and the IT Security group to help ensure that appropriate security resources are scheduled and that security-related project objectives and timelines are met
  • Five years of experience performing IT security risk assessments
  • Eight years of experience in Information Security
  • Understanding of security principles, IT security controls and related technologies and products
26

Senior Manager, IT Security Resume Examples & Samples

  • Successful development, implementation, and maintenance of information technology security controls for the organization
  • Assist with the development of IT Security staff through coaching and training to accomplish organizational, team, and service goals
  • Oversee the approval, training, and dissemination of security policies and practices
  • Create, communicate and implement a risk-based process for vendor risk management
  • Work directly with the business units to facilitate IT risk assessment and risk management processes
  • Technology disciplines include but are not limited to, endpoint security, data loss protection, firewalls, intrusion detection and intrusion prevention, application and system scanning tools, log collection and monitoring
  • Identify, select and manage security vendors to ensure that service delivery and support meet performance and business objectives
  • Continuously evaluate and assess current and future security needs of the organization and make recommendations and business case requests to substantiate changes
  • Understand and adhere to the regulatory and compliance requirements that impact either current business operations or potential business initiatives, and anticipate trends, situations, or changing market conditions and take appropriate action on a timely basis
  • Manage relationships with third party providers of services to the organization which includes negotiation of contract language and evaluation of third party risks related to privacy and security practices
  • Provide regular reporting on the information security program to the Senior Leadership Team, Internal Risk Management, audit committees, etc
  • Coordinate with the various Business Units to include Infrastructure and Application development teams to ensure alignment with IT Security
  • Manage security incidents and monitor the external environment for emerging threats, and collaborate with relevant stakeholders on the appropriate courses of action
  • Audit ongoing compliance with security procedures and regulations; develop reports of existing gaps and recommendations for mitigation
  • Ensure compliance with privacy laws and regulations at the state and national levels
  • Bachelor's Degree or in-lieu of degree equivalent education, training and work-related experience
  • 10+ years of experience in related IT Security and Compliance job role
  • 5+ years of leadership experience managing a team of five or more
  • Current security certifications, including one or more of the following: CISSP, CISA and/or CISM
  • Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines
  • Must possess effective verbal and written communication skills
  • Demonstrated technical experience as an administrator of most of the following disciplines: endpoint security, data loss protection, firewalls, intrusion detection and intrusion prevention, application and system scanning tools, log collection and monitoring
  • Demonstrated experience in and current understanding of IT assessment best practices, management techniques and industry trends within IT Security responsibility areas
  • Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis in accordance with current and emerging threats
  • Must have a proven track record in developing and implementing information security plans, policies, and procedures
  • Knowledge and understanding of relevant legal and regulatory requirements frameworks to include: PCI, NIST, SOX, MARS-E, HIPPA
  • Excellent project management skills including scheduling and resource management
  • IT Security experience in a regulated environment to include one more of the following industries: Insurance, Financial Services, Pharmaceuticals
  • Supplemental education or certifications (MBA, PhD, CPA, etc.)
  • Supplemental computer knowledge (Access, MS Projects, etc.)
  • 3+ Years of experience specifically in Insurance or financial services industry
27

Program Manager IT Security & Connectivity Applications Resume Examples & Samples

  • Understand the strategic direction of business process owners and translate this into high-level requirements
  • Plan the overall program based on the given business objectives, determine key milestones and dependencies
  • Clearly define requests and projects and prepare the needed requests for decision making
  • Manage and monitor the financials of the program, review actuals / budget / forecast
  • Incorporate new program initiatives and communicate actions to responsible parties
  • Clarify the project organization structure and determine governance roles, responsibilities and resources
  • Assess program performance, risks, issues and dependencies between program initiatives
  • Develop program specific policies and standards (including use of tools) that projects have to be compliant with
  • Look for opportunities to improve program efficiency in order to reduce costs and add value
28

Manager, IT Security Operations Resume Examples & Samples

  • Responsible for managing an IT Security Operations Team, including contractors
  • Responsible for establishing security operations framework for various security technologies
  • Develop operational processes around: incident response, alerting, & escalations
  • Responsible for developing & deploying new security technologies
  • Responsible for developing advanced metrics, scorecards, and Splunk dashboards
  • Participate in project teams providing security requirements where needed
  • Work on process improvements including: development of new tools, automation, and integration
  • Responsible for interconnecting various security event sources: server logs, network, various security devices, threat feeds, antivirus, malware, vulnerability scanners, net flow, etc
  • Responsible for designing and operationalizing all aspects of our security infrastructure
  • Responsible for rolling up your sleeves and getting stuff done. This is a hands-on position
  • Previous experience with leading tactical teams
  • Strong Ruby, Python or other scripting language
  • Strong understanding of network security, operating systems, web application security, incident response, security engineering, authentication, authorization, security protocols, and cryptography
  • Strong understanding of security event types, structured and unstructured data
  • Strong Splunk skills, creating dashboards, advanced query experience
  • Strong understanding of DevOps tooling and other monitoring platforms
  • Must be an effective communicator and a team player who works well with team members, other IT teams, business partners, and various vendors
  • Strong analytical capabilities and have a desire to learn new things
  • Resourceful and well organized
  • Willingness to provide feedback in challenging situations
29

Manager, IT Security Audit Resume Examples & Samples

  • Develops, maintains, and implements internal Security audit plans and conducts audits to ensure Cotiviti Security policies, standards, and external compliance requirements are being met
  • Identifies and communicates external Security compliance requirements such as HIPAA, HITRUST, Sarbanes Oxley, SSAE-17 SOC 1 and SOC 2, Data Privacy, and others and monitor’s Cotiviti’s ability to stay in compliance with them
  • Develops a strong working relationship with IT teams and provides clear well-defined education to IT teams on control requirements associated with required external audits
  • Collaborates and acts as point of contact for Security with the Cotiviti internal audit organization
  • Coordinates and acts as liaison for external audits activities and auditors who are conducting Security related audits of Cotiviti and its information infrastructure
  • Reviews changes to policies, business and environmental conditions, and feedback and updates training and awareness strategy, activities, and materials as appropriate to ensure they incorporate appropriate audit requirements and external compliance requirements
  • Develops and maintains annual audit calendar for both internal Security audit activities as well as projected external audits by customers, audit firms, and third parties
  • Executes Security audits
  • Develops and maintains style guides and templates for audit plans and Security audit related documentation in collaboration with Security leadership
  • Assists in the development of effective information risk and enterprise security training campaigns, education and awareness materials, and training and awareness self service information repositories for Cotiviti employees, contractors, consultants, partners, and vendors to ensure they include audit and compliance requirements and expectations
  • Assists in drafting and development of security policies, standards, and procedures documentation
  • Bachelor or Masters Degree (Masters Preferred) in field related to corporate training and awareness
  • Minimum of five years in developing, implementing, and maintaining IT Audit and Security (Physical Personnel and Information Security) audit programs
  • Experience in working with regulations and compliance requirements including HIPAA, HITRUST, NIST CSF, ISO 2700x, SSAE-16 (SOC 1 and SOC2), EU Data Privacy and Security, Privacy Shield, and others
  • Experience in developing, executing, and maintaining Security audit plans and audit standards
  • Experience in working with external audit firms to assist them in successfully completing audits both comprehensively and efficiently
  • Working knowledge of and experience with industry leading audit standards and methodologies (i.e. COBIT, and COSO)
  • Ability to work with Security Professionals and organizationally stakeholders in the development, management, and tracking of audit finding remediation plans and activities
  • Experience in working with Governance, Risk, and Compliance software platforms to manage audit related information and activities
  • Experience in identifying cultural and educational requirements for a diverse population and effectively able communicate audit and technical concepts to them
  • Excellent written and visual communication skills
  • Ability to collaborate with subject matter experts and synthesize input from multiple stakeholders into concise effective communication
  • Minimal travel
  • Ability to work within a matrix organization
30

Manager, IT Security Resume Examples & Samples

  • Engage within any client relationship regarding any aspect of the delivery of their MSS VMS services and being responsible for the success of the overall program
  • Plan, organize, and maintain an effective VMS engineering organization composed of highly qualified senior-level engineering and project management personnel
  • Responsible for containing a general high-level understanding of all client security project priorities, security strategies/goals/objectives, security capabilities; and for integrating that understanding within the SecureWorks VMS program
  • Responsible for working with the VMS Team to ensure that SLA reporting, where applicable, occurs consistently and accurately
  • Responsible for ongoing "Run the Business" task prioritization and issue management. This includes conducting standup meetings to review assignments and assignment progress, set priorities, address issues, and monitor staff capacity against day to day project activities
  • Compile, review, and approve all Root Cause Analysis documentation presented to any client outlining concerns with their MSS VMS services
  • Work with SecureWorks’ Product Management /Development organization to support client service enhancement requests to determine the ultimate roadmap of completion
  • Maintain a high level of client satisfaction directly addressing any service-level concerns or tracking open items as it pertains to current client requests
  • Hire and lead senior level personnel including providing performance reviews, real-time feedback, and assisting in career planning and promotional opportunities
  • Manage both US base and International employees
  • Support the VMS team when working with technology vendors to troubleshoot an issue related to a client’s VMS MSS services
  • Responsible for keeping Client abreast of problem status, set clear expectations, provide timely follow up to client, and independently handle challenging client situations on a daily basis
  • Organize processes internally within the VMS Engineering Team to ensure consistent service delivery to the client
  • Provide 24X7 management-level escalation support as required to resolve issues internally and externally
  • Participate and support quarterly reviews providing an overview of the deployment of the client’s MSS VMS services to enterprise-level clients
31

IAM Project Manager, IT Security Resume Examples & Samples

  • Participates in Change Management calls and acts as the subject matter expert on platforms. Leads or participates in projects to support the evaluation and implementation of security administration software as well as components within the systems development methodology. Participates on project teams to evaluate vendor products. Analyzes the access impact of each request and determines the appropriate implementation path
  • Establishes and maintains effective service relationships with departments and divisions by: (1) keeping them informed of the status of their access requests and projects; (2) understanding their business needs and escalating these needs as necessary; (3) providing them with information regarding their access questions and concerns; and (4) providing them with non-technical answers to access questions and the rationale behind policies, procedures, monitoring and best practices
  • Partners with IAM, Information Security, IT and other business partners to implement appropriate and consistent IAM requirements that meet IAM policy and standards. Analyzes and provides recommendations to enhance existing IAM policy and standards based on technical expertise. Provides subject matter expertise and technical consultation on technical issues or concerns as needed. When identified, shares knowledge and performs internal mentoring
  • Provides support within the department for issues related to technology, platforms, environments or access administration. Applies knowledge of risk ranking of the various technology platforms and environments when resolving issues. Identifies improvement opportunities, evaluates costs, and presents recommendations to management
  • Designs and develops technical documentation for security administration software, platform and environment security access. Actively participates in the development of tools to automate access management services and to implement access and security policies and standards. Initiates, designs and develops the documentation required to support application onboarding
  • Maintains and develops an awareness of issues, current developments and best practices within the Identity & Access Management discipline. Presents recommendations to management that could improve or resolve Vanguard’s security access issues
  • Supports governance teams with internal and external audit walkthroughs
  • Maintains an awareness of the Identity and Access Management department dashboard. Identifies opportunities to improve the quality, efficiency and effectiveness of the team, department and processes
  • Participates in or leads special projects and performs other duties as assigned
  • Undergraduate degree in a related field or the equivalent combination of training and experience
  • Experience with information security, network administration or IT (minimum 3-5 years)
  • Extensive background in information technology, a related field or combination of training and experience. Project Management experience or credentials helpful
  • Advanced knowledge of: ACF2, JCL and Utilities, Lotus Notes, Microsoft Access, Microsoft Office Suite, Microsoft Windows NT Network Security Administration
  • Advanced knowledge of: AS/400 Security Administration, DB2, Report Archiving, SDSF, Sybase Security Administration, including SQL, TSO, UNIX, LDAP, Active Directory
  • Comprehensive knowledge of security administration theories, practices and concepts
  • Strong knowledge of Vanguard’s enterprise-wide security administration tools
  • Excellent verbal, written and interpersonal communication skills required
32

Senior Manager, IT Security Resume Examples & Samples

  • Manage the workload of IT Security teams and help remove obstacles to their success
  • Interview, select, and onboard employees
  • Manage scheduling, ticketing systems, maintenance windows, and other operational functions
  • Establish and implement testing and reporting protocols
  • Provide ongoing coaching, guidance, feedback and mentoring support to the team
  • Motivate and develop team members
  • Monitor compliance with IT Security policies and standards
  • Ability to read, write and speak the English language to communicate with employees, customers, suppliers, in person, on the phone, and by written communications in a clear, straight-forward, and professional manner
  • Basic computer skills, with proficiency with Word, Excel, Powerpoint, Visio
  • Knowledge of computer and/or network systems, applications, procedures and techniques
  • Experience leading others and providing constructive feedback
  • Demonstrated interpersonal skills and ability to work effectively and collaboratively with a wide range of stakeholders
  • Ability to learn and support new systems and applications
  • Ability to work with others to resolve problems, handle requests or situations
  • Demonstrated knowledge of information technologies and methodologies related to assigned IT segment or area
  • Displays a sense of urgency to resolve issues quickly and efficiently
  • A team player with the ability to enable changes in the business processes and ability to work cooperatively with all groups is essential
  • Ability to multi-task and handle on a proactive basis, changing priorities in a fast-paced environment in order to maximize time-management and efficiencies
  • Demonstrated ability to successfully distill complex technical information into clear, concise yet comprehensive communication material
  • Demonstrated ability to meet rigorous deadlines while managing multiple projects concurrently
  • Ability to make decisions and solve problems while working under pressure
  • Outstanding work ethic; displays a high sense of urgency to resolve issues quickly and efficiently
  • Ability to exercise, on a regular basis, independent judgment and discretion in performance of job duties
  • Ability to recruit, motivate, develop, and direct people as they work, identifying the best people for the job
  • Minimum 10+ years’ experience in Technical Management, preferably security-related
  • Must be focused, mature, flexible, tolerant of ambiguity, and an emotionally intelligent leader who collaborates exceptionally well in a fast-paced ever-changing environment
33

Senior Manager, IT Security Resume Examples & Samples

  • Manage the workload of the IT Security team and help remove obstacles to their success
  • Manage scheduling, ticketing systems, and other operational functions
  • Coordinate and conduct post-incident reviews
34

Department Manager, IT Security Resume Examples & Samples

  • Develop and manage relationships with key stakeholders including BIOs; TROs; Internal and External Audit and Regulators; Legal and Compliance
  • Partner with stakeholder to implement controls (i.e. IAM, Information Security, Data Security, etc.)
  • Participate in control governance forums (executive councils and steering committees)
  • Identify and participate in industry and standards forums
  • Socialize controls program across business unit /functions
  • Develop and implement IT Controls goals and objectives for the business unit
  • Ensure appropriate controls are implemented on technology component of new business initiatives for emerging technology risk
  • Identifies IT risks and emerging risks and partners with 2nd line of defence
  • Maintains process risk and control framework in support of IT control environment and partners with IT operational staff to design and build controls aligned to control framework
  • Ensures IT controls are aligned to regulatory requirements (i.e. IT-SOX and PCI)
35

Manager, IT Security Monitor & Response Resume Examples & Samples

  • Exercise all phases of incident response life cycle: analysis, containment, eradication, remediation, recovery
  • Evaluate external threat intelligence sources related to zero day attacks, exploit kits and malware to determine organizational risk and improve threat detection
  • Conduct host based forensics and analysis to determine root cause and impact; define, document, test and manage incident response processes; mature and integrate processes and technologies, with the objective of the continued development of a “single plane of glass” for monitoring and comprehensive incident response process
  • Understanding of network and system intrusion and detection methods; examples of related technologies include Splunk, Next Generation Endpoint Protection Platforms (EPP), Security information and event management (SIEM)
  • Experience with malware analysis, endpoint lateral movement detection methodologies and host forensic tools; US Citizenship required
36

Assistant Manager IT Security Management Resume Examples & Samples

  • Overall IT Security management, align, define and maintain IT security policy and guideline to meet BMW group standards
  • Consult to Business and PMs for IT security requirement identification, security solution design and security measures implementation in project lifecycle
  • IT Security Management in project, ensure the SMP service in projects, review and approve the deliverable of Security Concept
  • Bridge between AG security team and local market for new security policy, process or tools rollout
  • Manage and support IT security audit for project and operational systems
  • Establish, maintain and manage necessary contacts with internal and external partners related to scope of work
  • IT Risk Management, identify IT risks generated from projects and operations, risk impact analysis, define mitigation plan and ensure measure implementation. communication with APAC FG and central FG for risks status reporting
  • Support on Clearing Process, Data Protection, Privacy Impact Assessment and Business Impact Analysis for each project
  • Coordinate with local emergency team for Security Incident handling
  • Manage local IT security testing service (Penetration Test and Code Review); ensure the security issues identified in the testing to be closed before project Go-live
  • Education / Degree
37

Snr Project Manager IT Security Resume Examples & Samples

  • Experience in managing senior stakeholders in CISO organisation, vendors and internal resources
  • Experience in project managing security improvement initiatives and the various cyber security activities in the client environment
  • Expand security portfolio in the client account by seamless delivery of all security services and addressing new opportunities – including requirement analysis, proposal making in collaboration with architects and presales team
  • Lead cross-functional program teams in security consulting, incident handling, remediation planning and execution of security programs
  • Drive definition and closure of project requirements, project plans/schedules, and resource needs with stakeholders
  • High analytical skills, strategic and commercial mind-set
  • High quality awareness
38

Manager, IT Security Resume Examples & Samples

  • Leads the design, implementation, operation and maintenance of the Information Security Management System based on HIPAA, HITRUST and/or ISO 27002 standards
  • Draft clear, concise, and enforceable policies that are compliant with applicable laws and regulations; benchmarked against industry standards that are compliant with all applicable laws, regulations, industry standards and aligned with stakeholder and customer requirements
  • Manage Organizational Cyber Security Program (ISO 27002)
  • Experience with HIPAA, HITRUST and/or ISO
  • Hands-on team leadership with excellent communication skills
  • Management of a Governance, Risk, Compliance (GRC) Program
  • Security infrastructure device management
  • Security and critical IT monitoring
  • Threat management
  • Data classification and governance
  • Knowledge of the following security applications: End Point Protection, Web content filtering, NGFW Firewalls, DLP, AV / Malware, Log Collection/Filtering, MDM
39

Senior Manager, IT Security Resume Examples & Samples

  • 5-10+ years’ experience working with all levels of Management as well as directing project teams
  • Deep technical experience and knowledge of Information Security, IT, networks, cloud, etc
  • Excellent project management skills, ability to coordinate projects and tasks across functional boundaries
  • Ability to architect secure solutions to onboard new solutions or improve the security of systems, applications, or solutions
  • Ability to influence teams, establish direction, create an atmosphere of trust, leverage diverse views, encourage dialogue, and encourage improvement and innovation
  • Identify and resolve issues quickly and effectively with ability to make timely decisions with limited information
  • Experience working with legal, audit and compliance staff
  • Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (COBIT) frameworks
  • Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies
  • Ability to manage multiple tasks in a fast-paced work environment
40

Senior Manager, IT Security Resume Examples & Samples

  • Manage a dedicated engineering team consisting of Project Managers and Engineers
  • Strategically plan for operational growth across the service offering proactively improving the service on a daily basis
  • Forecasting service improvements in the offering while creating the appropriate service enhancements for Engineering to add into their development cycle
  • Independently build succession plans within the team ensuring that the leadership bench within the team continues to become stronger to take on additional business growth
  • Plan, organize, and maintain an effective Security Operations Center composed of qualified personnel properly trained in their respective jobs to ensure reliability of disparate client security devices
  • Hire and lead Security Operations Center personnel including providing performance reviews, real-time feedback, and assisting in career planning and promotional opportunities
  • Maintain a high level of client satisfaction
  • Work with the client’s auditing department to complete all required security audit questionnaires related to the services that SecureWorks provides
  • Act as client’s liaison with SecureWorks Product Management /Development organization to support their service enhancement requests
  • Establish and maintain metrics that help provide assistance with managing to a high level of productivity, supportability, and operational readiness
  • Ensure short-term client support objectives are met while supporting long-term corporate/departmental goals and strategies
  • Quickly spot problematic trends and take proactive steps to mitigate impact to clients
  • Organize processes internally within the SOC for all clients
  • Participate in company planning in such matters as newly supported offering technologies, infrastructure enhancements, international operations, budgeting, and change management controls
  • Energetically and proactively participate in client escalation calls
  • Provide on-call support for Operations
  • Experience managing senior engineering teams
  • Experience managing enterprise client service relationships
  • Experience in capacity planning staffing to cover a 7x24 engineering operation
  • Experience with creating/maintaining operational documentation as required
  • Experience with presenting service performance data to an external client as required
  • Excellent Microsoft office skills including advanced knowledge of MS Excel and PowerPoint
  • Excellent interpersonal skills with the ability to interact professionally with all levels within the organization
  • A proven history to provide detailed, thorough deliverables in a timely manner
  • Being able to work in a high pressure, fast paced environment with rapidly shifting priorities
41

Internal Audit Manager IT Security & Resilience Resume Examples & Samples

  • Networks and communications security meet business needs
  • Information processed by the Group is protected
  • Users are uniquely identifiable and have access rights in accordance with their business role
  • Physical measures have been implemented to protect information from unauthorized access, damage and interference when being processed, stored or transmitted
  • Electronic information is properly secured when stored, transmitted or destroyed
  • Audit that the following IT processes are managed across group: service requests and incidents, problems, continuity, security services, operations, change
42

Senior Manager, IT Security Resume Examples & Samples

  • Manage a dedicated team consisting of Project Managers, Business Intelligence Analysts and Engineers
  • Contribute when needed to the production of required reports while meeting SLAs
  • Supervise timely and accurate assignments, processing (according to SLAs) and auditing of activities within assigned team. Reporting for assigned areas – e.g. Quality report, SLA report, Production Numbers, Forecasting, etc
  • Partner with client to ensure operational metrics are met
  • Identify opportunities for automation, standardization, cost savings, and business improvement
  • Identify gaps, develop strategy, and create operational plans in support of Company vision
  • Supervise overall reporting project schedule, prioritization and action plans to ensure project commitments are met
  • Supervise tool development and maintenance, prioritization of work and participate in requirements gathering and translation from business requestors to technical implementation personnel
  • Supervise functional reporting requirements, developing metrics and measuring project success. Supervise resolution of problems with reporting and has responsibility for maintenance of reporting systems
  • Meet monthly with client to obtain approvals to invoice based on device count reconciliation, provide all billing (device recurring, reporting recurring, MAC Banding recurring, Expedites non-recurring, Projects non-recurring, PO non-recurring) approvals and information to Sales Ops and Finance
  • Collaborate with senior management to compile monthly DT scorecard, operations briefs, and other metrics as required for inclusion in executive level reporting
  • Flexible work hours (May require supervisor support after normal hours)
  • Excellent written, verbal and interpersonal communication skills, with an ability to communicate effectively throughout all levels of the organization and with external partners
43

Manager, IT Security Resume Examples & Samples

  • Organize, manage, and lead Security Analysis personnel
  • Ensure short-term client support objectives are met while supporting long-term
  • Excellent client relations, people management, and technical leadership skills; excellent written and
  • Ability to work in a high pressure, fast paced environment with rapidly shifting priorities; ability to
  • 7+ years of experience of network/security architecture or operations experience
44

Manager, IT Security Resume Examples & Samples

  • Protects valuable information and maintains the confidentiality and integrity of data through
  • Knowledge of security management, network security & protocols, data and application of solutions
  • Knowledge of industry trends and current and emerging risks
  • Advises One IT leadership on enterprise security strategy, security architecture, and security design work; works with business stakeholders to define the security and privacy policies
  • Supports security and privacy audits and develops a mitigation strategy
  • Oversees One IT disaster recovery planning and testing
  • Manages One IT change control process
  • Develops and standardizes processes and procedures relating to IT Security risk and change control across the technology organization, balances risk vs. business needs while ensuring policies are implemented in accordance with corporate-wide policies and external regulatory obligations
  • Reports progress on IT security performance to management on a consistent basis
  • Reviews exception requests and monitors action plans that are developed and implemented to address any non-compliance with policy requirements
  • Assists in the development and implementation of IT security & control architecture including consulting on security requirements in system development activities, policies, standards and procedures
  • Develops and implements strategy for business continuance/disaster recovery of all systems and applications in the event of natural or man-made disaster
  • Lead the development of the ITS disaster recovery plan by developing project plans, coordinating activities, monitoring progress, reporting status and presenting recommendations to management
  • Use business impact analysis to assess internal and external concerns and risks to the organization by recommending strategies to reduce or eliminate identified risks
  • Schedule and coordinate applications and systems mock exercises to establish recovery timelines and ensure accuracy and effectiveness
  • Defines and improves technology change processes in accordance with recognized industry standards (ITIL) and ensures change activities are conducted according to defined processes
  • Manages a change process improvement program across the technology organization and maintains the evolution of the program
  • Manages and mentors security staff
  • Will require some on-call coverage responsibilities
  • Bachelor of Science degree in computer science with emphasis on IT security required
  • 3-4 years’ experience in a security supervisory role required
  • Well rounded understanding of technology, operations and key business processes
  • Strong skills and experience in the following
  • Security policies procedures and leading practices
  • Strong change management skills; change agent
45

Senior Manager, IT Security Resume Examples & Samples

  • Work with project teams to develop and implement security procedures and operating practices
  • Align with development efforts to ensure key security controls and requirements are designed and implemented as part of the development
  • Provide oversight on the management and strategy of technical security infrastructures for the defense, detection and response to sophisticated cyber threats both in the cloud and on premise
  • Maintain compliance with all Teva information security policy requirements
  • Carry out cyber risk assessments and make recommendations to project teams and senior management on best practices and appropriate technology solutions
  • Develop, monitor and maintain all IT Security related activities and manage associated risk reporting and communication on projects
  • Need to have significant knowledge of Cyber threat actors, attack methodologies and mitigation/remediation methods
  • Coordinate cyber security technical assessments, including but not limited to vulnerability management and penetration tests
  • Strong project management capabilities including managing multiple large projects simultaneously
  • Current information security certification as a GIAC, CISSP, CISM, CISA, etc
  • A global perspective on privacy, security, and data protection issues and trend
  • Knowledge of Salesforce, Heroku, AWS, IBM Soft layers, Azure a plus
  • Security cloud architecture experience a plus
  • Experience with non-enterprise Mobile Application security both iOS and Android platforms
  • Strong understanding of API security desired
  • Knowledge of federated identification protocols including oAuth, OpenID Connect, SAML, ADFS etc
  • Identity Management and IDaaS is desired
  • Strong technical security knowledge of OS, DB, Middleware, Web Server, and Network Security
  • Experience in ISO and NIST cyber security frameworks
  • Strong writing, speaking and presenting skills
  • Significant knowledge of cyber threat actors and their attack methodologies are required
  • Deep understanding of information security technologies, networking and network architecture required
  • Understanding in many IT Security related solutions or tools such as anti-malware, next generation firewalls, SIEM, IDS/IPS, Qualys, Metasploit, etc