Information Security Engineering Manager

Job Complexities

• Works on a diverse range of problems of moderate scope where analysis of situations or data requires evaluation of a variety of factors and an understanding of current business and technological trends.
• Exercises judgment within defined procedures and practices to determine appropriate action.
• Initiates corrective action needed to resolve complex, critical issues.
• Provides input to and may develop operational plans and works with senior management to ensure that plans are integrated with broader strategies.

Supervision Received or Extended

• Receives assignments in the form of objectives and determines how to use resources to meet schedules and goals.
• Provides direction to employees within the boundaries of established policies.
• Enlists expertise of peers in other departments and a wide range of additional resources to explore new methods and approaches and to solve problems.
• Work is reviewed in terms of meeting product, project, or operational objectives, quality, schedules, and budgets.

Impact

• Provides input to department strategic plan and budget.
• Recommends changes to process, SLA s, department policies, procedures, metrics, and standards.
• Influences senior management on decisions related to department priorities, schedules, plans and cost controls.
• Achieves objectives for multiple and varied projects.
• Regularly makes decisions necessary to resolve critical issues related to department operations.

Knowledge and Skills / Technology Used

• Deep understanding network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
• Deep understanding of endpoint security concepts including technology, best practices, design, deployment, and operations.
• Understanding network security implementations (e.g., host-based IDS, IPS, access control lists), including their function and placement in a network.
• Experience with public cloud networking and security in a hybrid cloud environment.
• Expertise with Microsoft Defender security suites as well as other modern endpoint protection technologies such as : next-gen AV, EDR, XDR.
• Understanding network security implementations, including their function and placement in a network.
• Experience with public cloud and security in a hybrid cloud environment is preferred.
• Successful track record of designing, developing, and managing the execution of projects in the endpoint and / or security space.
• Ability to develop and implement processes to ensure compliance and quality
• Ability to establish and maintain effective working relationships within and between departments.
• Ability to communicate the function s vision and the department s direction and set aligned goals for team. Provides resources and implements systems to measure results.
• Ability to select, coach and develop talent and hold employees accountable for results. Supports change and fosters collaboration.
• Deals with others in an honest manner, assures adherence to company policies, addresses questionable business practices.
• Provides others with reliable information, creates, and delivers accurate reports and presentations. Uses good listening skills. Negotiates effectively.

Education

• Minimum of 15 years of formal education - Graduate / Postgraduate in Computer Science / Information Technology or equivalent experience is required.
• Training courses, seminars, certifications, or other security related education experience preferred.

Experience

• Professional work experience between 10-13 and at least 5+ years of technical experience as a senior contributor
• 2 to 5 years of supervisory or management experience in progressively responsible roles in a demanding environment.

License or Certification

• CISSP (Certified Information Systems Security Certified Professional), CISA (Certified Information Systems Auditor), CISM (Certified Information Security Management) preferred.

Skills Required

Cloud Security, Network Security, Security Architecture, Cissp, Endpoint Security, Team Leadership