ATC Information Security and Network Manager

The WWT Advanced Technology Center Core team is currently searching for an Information Security and Network Manager to lead security and network operations. This individual will be responsible for leading a team in assessing WWT ATC's cybersecurity posture, implementing security controls, and monitoring and responding to security and network incidents. This position is responsible for identifying, evaluating, and alerting on information security risks in a manner that meets compliance and regulatory requirements.

• Manage the ATC InfoSec Security and Network Operations team, including hiring, training, staff development, performance management, and annual compensation review.
• Align security operation activities to WWT's Information Security objectives to enable a strategic, comprehensive enterprise information security program to ensure the integrity, confidentiality, and availability of information owned, controlled, or processed by the organization.
• Obtain buy-in from stakeholders both within and outside of the ATC Information Security team.
• Develop and manage information security operations teams budgets and monitor them for variances.
• Manage the workload of the team and handle internal and external escalations
• Work directly with the business units to understand business operations and facilitate the implementation of security controls, both preventative and detective.
• Provide subject matter expertise to Information Security and ATC leadership in the subjects of Threat and Vulnerability Management and Incident Response.
• Provide tactical security guidance for all ATC projects, including the evaluation and recommendation of technical controls.
• Direct the team in the development of security baselines, the optimization of available tools, and the automation of security operations processes.
• Manage security incidents and events to protect corporate ATC assets, including intellectual property, fixed assets, and the company's reputation.
• Ensure that security operations programs are in compliance with applicable laws, regulations, and policies to minimize or eliminate risk and audit findings.
• Liaise between the information security team and corporate compliance, legal, and HR teams as required.
• Coordinate the use of external resources involved in the information security program, including, but not limited to, interviewing, negotiating contracts and fees, and managing external resources.
• Develop business-relevant metrics to measure the efficiency and effectiveness of the Security Operations program, facilitate appropriate resource allocation, and increase the maturity of the security program.

• Bachelor's Degree in Computer Science (or similar) or equivalent experience.
• Strong InfoSec knowledge. InfoSec certifications, such as CEH, CISSP, CISSP-ISSMP, CISM, or GSEC preferred.

• Knowledge of frameworks (e.g. ISO, NIST) and compliance requirements (e.g. PCI).

• Relevant professional experience leading teams.

• Informed on technological trends and developments in the area of information security and risk management.
• Project management, financial/budget management, and resource management skills.

• Able and willing to solve ambiguous, amorphous, complex, and large problems with minimal guidance and minimal external motivation.

• Experience with contract and vendor negotiations.

• Excellent verbal and written communication skills. Ability to conceptualize complex business and technical requirements and transform them into comprehensible models and templates.
• High degree of self-initiative, dependability, and ability to work with little supervision.