Cyber Security Manager

Location: Boise, US

The Cybersecurity Manager is responsible for safeguarding the organization’s information systems by implementing and maintaining robust security measures. This role involves developing security policies, conducting risk assessments, and ensuring compliance with industry standards. The Manager will work closely with IT teams to identify and mitigate potential security threats, respond to incidents, and provide training and awareness programs to enhance the organization’s overall security posture. The Cybersecurity Manager will report to the Director of IT.

Additionally, the Cybersecurity Manager will lead threat detection and incident response efforts, perform advanced analysis of security incidents, and develop strategies to protect the organization’s information systems. The role requires outstanding communication and presentation skills, as well as familiarity with security best practices. The ideal candidate will have experience developing security awareness content for an enterprise organization and the ability to translate complex concepts into simple, relatable terms. Qualified candidates need to be dynamic and able to work successfully in a fluid environment.

Responsibilities & Requirements:

• Required: Bachelor’s degree in computer science, Information Technology Management or related field.
•  Required: Advanced certifications such as CISSP, CISM, or CEH.
• Required: Minimum ten (10) years’ experience in cyber security with a generalist expertise across all Cyber disciplines: GRC, Incident, Threat, Vulnerability Management, IAM, etc.
• Required: Understanding of relevant regulations, industry standards, compliance and other information security standards and methodologies such as NIST, ISO, and CIS Controls.
• Required: A valid driver’s license before employment and maintain licensure for the duration of employment in this position.
• Required: Leadership experience to build out a Cyber Security Program and act as an individual contributor to handle incidents and governance requirements.

Build out a Security Program:

• Develop, implement, and enforce comprehensive cyber security strategies, policies, standards, and processes
• Manage software review processes including performing in-depth analysis of proposed software and solutions
• Manage and maintain security vendors, tools, and technologies
• Stay current on the latest cyber security trends, emerging threats, vulnerabilities and regulatory requirements to proactively defend against cyber attacks

Incident Response & Vulnerability Management

· Develop and refine incident response procedures

· Monitor and analyze security systems and alerts to identify suspicious activities and respond to potential threats

· Proficiency in security technologies, including firewalls, intrusion detection/prevention systems, and encryption methods.

· Experience in developing security guideline, process, and response documentation.

· Provide end users with security response support, including investigating and mitigating actions to contain activity of reported phishing emails, malicious files, etc.

· Perform regular security audits and vulnerability assessments to identify and mitigate risks

· Lead and coordinate incident response activities including investigation, containment, and remediation

· Perform analysis of compromised systems and networks to determine the root cause of incidents

· Lead vulnerability assessments and assist with risk prioritization and the development of a responsible course of action

Build a Security Awareness and Education Program

· Develop and deliver training programs to educate employees on cyber security awareness and best practices.

Governance, Risk and Compliance

· Ensure compliance with relevant regulations and frameworks

Soft Skills Required:

· Ability to work with and influence others in a professional and positive manner.

· Foster an environment that encourages teamwork, empowerment and collaboration, both internally and externally.

· Lead by example, maintains an even temperament under pressure.

· High integrity and honesty, promote ethical behavior and trust in all actions.

· Creative and change-oriented, is an assertive, energetic self-starter.

· Above average written, oral and facilitation skills, ability to articulate detailed information in a clear and concise manner.

· Excellent listener with empathy to peer, customer or employee concerns and aptitude for necessary follow-up actions.

· Convey information in understandable terms at all levels of the organization.

· Behave Ethically.

· Understand ethical behavior and business practices and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.

Nice to have:

· Ability to secure both IT and OT environments and ensure seamless integration of security measures across both environments.

· Bilingual candidates are encouraged to apply

· Government or candidates in the Federal space are encouraged to apply – flexibility in approach and risk tolerance is required.