Manages the development and delivery of IT security standards, best practices, architecture and systems to ensure information system security across the enterprise.
The Georgia Department of Revenue is seeking an Information Technology Security Manager to be a lead member of the Information Security team. This position will report directly to the Chief Information Security Officer and be responsible for directing subordinate supervisors and staff in the development and delivery of IT security standards and best practices.
The ITSM will perform two core functions for the Department:
Overseeing the operations of the Security Operations Center (SOC) and security analysts.Supporting the Compliance team in maintaining and establishing a stronger security stance through policy, architecture and training processes.Secondary tasks will include assisting in the selection of appropriate security solutions, and oversight of any vulnerability audits and assessments.
The ITSM is expected to interface with peers in the Systems and Network departments as well as with the leaders of the business units to share the corporate security vision and solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation.
Responsibilities include but are not limited to:
Overseeing the deployment, integration and initial configuration of all new security solutions and enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise's security documents specifically.Creating and maintaining the department's security architecture design.Working with the InfoSec Compliance team to create and maintain the department's Business Continuity Plan and Disaster Recovery Plan, where appropriate.Implementing processes and methods for auditing and addressing information security standards noncompliance.Providing support in maintaining the department's security awareness training program.Conducting studies within and outside the organization to ensure compliance with industry and security standards and best practices.Managing and participating in the planning and implementation of security administration for all IT projects and responsible for evaluation and selection of security applications & systems.Making recommendations and assisting in the implementation of changes to work methods and procedures to strengthen security measures.Continuing InfoSec's efforts to maintain security documents such as policies, standards, baselines, guidelines and procedures.Experience with security and technology tools such as SIEM tools, e.g., Splunk or endpoint security and threat intelligence tools.Supervising all investigations into problematic activity and providing ongoing communication with the CISO and InfoSec team.Supervising the design and execution of vulnerability assessments, penetration tests and security audits.DOR will conduct a background check on all candidates considered for the position. Individuals must be compliant with Georgia tax obligations. Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired. All employees will be fingerprinted.
Skill Requirements: Bachelor's degree in computer science or information technology - RequiredSystems and Network Security experience - Required (5 Years)IT Security experience - Required (5 Years)Management experience - Required (2 Years)AWS experience, performing security reviews/security assessments of applications and infrastructure - Required (5 Years)Industry certifications: CISSP, CompTIA Security+ or AWS Certified Security (MUST UPLOAD CERTIFICATIONS) - RequiredTechnical knowledge of developing and managing information security, disaster recovery, software and database protection - Highly desiredLeadership experience managing multiple, large cross-functional teams or projects and working with senior level management - Highly desiredExperience or knowledge in Motor Vehicle/Tax Industry - Highly desired
#J-18808-Ljbffr