Previous Job
Previous
Director of Cyber Security
Ref No.: 17-03869
Location: Naperville, Illinois
Position Type:Full Time
The Director of Cyber Security and Networking has overall responsibility for the cost-effective enablement of a cyber security program and network infrastructure necessary to meet business requirements and objectives. The position is a very "hands on” and requires up to date technical skills. He/she will be a direct report to the Chief Information Officer and member of the IT Leadership team (ITLT).

General Duties/Responsibilities
  • Hire, train, coach, mentor cyber security and network personnel.
  • Provide regular performance feedback and conduct goals and objectives/performance reviews with his/her direct reports. Ensure that all members of his/her team have annual goals.
  • Establish and report key performance indicators (KPIs) and service level agreements (SLAs).
  • Create the annual budget and capital plan for his/her areas of responsibility.
  • Establish trusted partnerships with peers and all colleagues throughout organization.
  • Define and publish Service Level Agreements (SLA's) for all network and security services and measure SLA achievement.
  • Lead, manage, and monitor the design, development, implementation, support, and troubleshooting of all network and security related infrastructure to include WAN's, LANS, firewalls, routers, switches, wireless, MDM's, etc.
  • Stay abreast of cyber security and network trends and put together appropriate business cases to facilitate their adoption.
  • Ensure that all projects assigned are completed on schedule and on budget.
  • Design a cost-effective and robust technology platform in the areas of cyber security and network technologies
  • Evaluate, recommend, and monitor cyber security and network related infrastructure, vendors, and business partners (outsourced services, hosting, etc.). Partner with the CIO in the negotiation of the larger, more complex Agreements to include purchase, license, maintenance, hosting and lease agreements.
  • Assist in the creation of business continuity and disaster recovery design, planning, development, implementation, monitoring, and execution (if necessary).
  • Is an ex-officio member of Change Advisory Board (CAB).
  • Provide production support (including on-call after hours support) to ensure that all critical and high severity cyber security and network related problems are addressed and corrected in a timely manner so as to not affect business operations..
  • Travel is up to 20%.
Technical Security Manager Duties/Responsibilities
  • Implement new technology that cost effectively mitigates security risks.
  • Ensure the compliance of all applications, systems and network infrastructure with application security policies, standards and procedures.
  • Function as the information security SME.
  • Lead the evaluation of security technologies and processes to respond to existing and new risks
  • Develop and manage process for security event log monitoring and analysis.
  • Establish and manage a comprehensive Identity and Access Management process.
  • Establish polices controlling access to the network.
  • Lead security incident triage that includes determining the scope, urgency, and potential impact of the specific vulnerability. Expeditiously remediate said vulnerability.
  • Lead the periodic vulnerability scanning process and penetration tests.
  • Partner with infrastructure and application architecture owners to ensure new and existing systems align with defined and agreed security policies.
Program Security Manager Duties/Responsibilities
  • Build a 3 year roadmap for cyber security program.
  • Manage and continuously develop the information security program, including strategy, policies, process, and metrics.
  • Provide strategic direction to personnel on emerging security risks.
  • Communicate the state of information security program, including successes and failures.
  • Detail out the security incident response program and ensure that said program is tested throughout and that all managers know their duties during such an incident.
  • Maintain a current understanding the IT threat landscape for our industry.
  • Make sure that cyber security policies and procedures are communicated to all personnel and that compliance is enforced.
  • Manage continuous enhancement of a company-wide cyber security awareness program.
  • Provide education and outreach to employees regarding their roles in protecting the security posture.
Network Architect Duties/Responsibilities
  • Provide a highly reliable and available network that cost effectively achieves a "near zero downtime” goal.
  • Lead the development, maintenance, and operation of data, voice and wireless infrastructure. Oversee the install, configuration, and troubleshooting of the corresponding t hardware and software.
  • Develop and maintain network equipment 3 to 5 year lifecycle plan.
  • Drive service quality monitoring and capacity planning processes to ensure network and communications systems can accommodate current and future business initiatives.
  • Establish the network technology road map in support of business goals and strategies.
  • Explore new capabilities and emerging network/telecommunications technologies and apply to roadmaps where appropriate.
SUPERVISORY RESPONSIBILITIES

This position has Engineer level (SME's) and Analyst direct reports as appropriate to encompass the areas of security and network administration (voice, data and mobile

EDUCATION and/or EXPERIENCE

Minimum Qualifications:
  • Bachelor's degree in computer science, management information systems (MIS) or an approved field of study from a four-year college plus 10 years of diverse and progressive "hands on” cyber security and network related (Voice, data and wireless) design and implementation experience and training. The ideal candidate will have had initial successes in voice and data telecommunications and then moved into cyber security roles. A MBA and three years in a senior management or director level assignment is highly desirable.
  • Five years' experience managing projects and/or supervising personnel.
  • Strong and current technical roots and knowledge in the areas of cyber security and network related architecture to include content filtering, network protocols, access controls, encryption, and 2 factor authentication technologies.
  • Experience with managing information security within a cloud environment
  • Strong teamwork skills, including the ability to establish and sustain successful working relationships with other management personnel.
  • Experience with conceptual security design considerations in firewalls, LANs, WANs, File Servers, PCs, Windows, TCP/IP and VPN environments.
  • Proven experience as a good listener and teacher to both technical and non-technical individuals.
  • Strong analytical, problem solving and interpersonal skills.
  • Demonstrable track record of successfully supporting a 24x7 operation.
  • Ability to multi-task and support multiple projects.
  • Excellent written and verbal communication skills.
  • Superb ability to motivate employees and inspire positive change within a team.
  • High standard of ethics and professionalism.
  • Clear understanding and record of ensuring customer needs and requirements are met on time and on-budget.
  • Able to keep his/her cool in stressful situations.
  • Demonstrated experience as a "team player”.
  • Knowledge of applicable laws/regulatory controls related to IT security with demonstrated knowledge of data security/protection principles.
  • Experience with Cisco System's portfolio of routing, switching, and technologies.
  • 5-10 years in large (i.e., $1 billion in annual revenue or greater) corporate environments is preferred.
  • Strong knowledge of current and emerging IT Cyber security risks and innovative risk management methods and solutions.
CISCO and security certifications are required. One or more of the following security certifications is preferred:
  • Certified Information Security Systems Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
PHYSICAL DEMANDS

Frequent requirements: Sitting, using hands to finger/handle/feel, reaching with hands/arms and talking/hearing.
Limited requirements: Walking.
Lifting requirements: No specific lifting requirements.
Visual requirements: Close vision and distance vision.
Ability to work weekends and overnights, as needed.
Ability to travel as necessitated by business need (sometimes on short notice) up to 25 % of the time.


Third Party Applications Not Accepted