Astrophysics - Industry, CA
posted 2 days ago
Full-time - Mid Level
Industry, CA
Administrative and Support Services
About the position
The Information Technology / Information Security Manager is responsible for managing and improving the IT/IS systems. This position will collaborate with leadership to develop, prioritize, and implement IT/IS strategies for the support of the server, network, and cybersecurity infrastructure. Responsible for supervising support staff in the day-to-day operations and managing consultants in the implementation of projects. The individual will drive initiatives ensuring IT/IS governance, risk management, and regulatory compliance (GRC). This is a strategic as well as a hands-on position involving the protection of assets.
Responsibilities
- Manage and monitor networks, computer systems, software, applications and peripherals
- Organize, maintain and improve existing IT and electronic data assets
- Manage and administer network and data security, including Active Directory, permissions, firewalls, antivirus, email security, etc.
- Troubleshoot system and network problems to diagnose and resolve complex hardware/software faults
- Research and procure computers, accessories, peripherals and IT related supplies
- Engage in cost saving initiatives; actively research and negotiate more cost effective and functional IT supplies, vendors, rates/plans etc.
- Develop and generate, and implement policies and procedural documentation
- Coordinate activities with network services and information groups
- Design and provide training to new employees; develop and implement other training initiatives
- Develop, maintain, coordinate, implement and improve company wide information security policies, and guidelines and oversee the dissemination of security policies and practices based on company goals and the relevant GRC framework
- Monitor the regulatory landscape to proactively address and ensure fulfillment of legal and contractual GRC mandates
- Coordinate and lead security threat or incident response, including risk analysis, response actions for IT and other functions as required, post-incident follow-ups and root-cause remediation
- Implement new security technologies, disaster recovery planning, business continuation plans, cyber penetration testing, risk assessment and security incident response methods and plans
- Develop and manage organization-wide training to increase security awareness of relevant information security practices, protocols and procedures
- Design and implement a program to collect and report information security related performance metrics and key risk indicators
- Drive continuous improvement in the organization's level of maturity for IT security
- Provide the vision and thought leadership related to cyber security and overall IT security strategy in partnership with company leaders
- Other duties as assigned
Requirements
- Bachelor's degree in information technology, computer science, or related field
- 5+ years experience in information technology or information security
- 3+ years experience in Management
- Knowledge of Microsoft 365 solution with running Hybrid mode, Licensing, and Azure integration
- Knowledge of system hardware and software technologies such as Hyper-V, Nutanix, routers, switches, firewall solution
- Knowledge of security solution such as SIEM, Vulnerability Scanning, Endpoint Security, IDS/IPS, and concepts
- Knowledge of Implementing Hyper-converged Infrastructure (HPE or Nutanix) is highly desirable
- Knowledge and experience in the implementation of NIST 800-171
- Experience coordinating initiatives for obtaining ISO 27001 related assurances
- Experience with Microsoft Windows server, AWS Cloud, Microsoft SQL and VOIP systems a plus
- Security+, CISM or CISSP certification preferred
- Must be able to obtain a secret security clearance
Benefits
- Excellent medical, dental and vision benefits
- 401K plan with 4% employer match
- 11 paid holidays, 10 PTO days
- Free donuts on Fridays, company luncheons and year end party!
