Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Cyber Security Architect
Company Duravant
Location Chicago, Ill or SE Washington State
Preferred GIAC Certifications GSEC
Travel 10%
Salary Not provided
URL https://www.linkedin.com/jobs/view/2599853057/?refId=DVuxMrR0%2FNMmvfA9rSZFjg%3D%3D&trackingId=gwVLNWarJ3Fe%2Fas%2BznkVeg%3D%3D
Contact Name Ray Trees Jr.
Contact Email rtrees/at/key.net
Expires 2021-09-25

Job Description

We’re Duravant. Designers, makers, and maintainers of highly engineered process equipment. Our family of companies include Wulftec, nVenia, Key Technology, and many others. The Duravant vision is to lead the engineered equipment industry in every market we serve, and we do that by staying true to our core values of integrity, teamwork, respect, winning spirit, and sense of urgency.



The Business Architect – Cyber Security role will establish a Duravant wide cyber practice utilizing the CMMC framework. The Cyber Security Architect will be responsible for engaging all operating companies (15+) to identify Cyber point leads and set an overall policy, establishing the necessary hygiene to meet or exceed target maturity levels. The Business Architect – Cyber Security will establish incident protocols, compliance requirements, and standard reporting on vulnerabilities and plan of actions to resolve. This is a unique opportunity to help build a cyber security practice, deployed to a diverse set of companies and locations. With a knowledge of NIST frameworks, CMMC awareness, and additional industry leading practices, the security architect will be the foundation of cyber security across Duravant.



ESSENTIAL RESPONSIBILITIES:

Maintain knowledge of business risk areas and develop/maintain action plans, such as:
Develop a business impact analysis (BIA)
Develop a business continuity plan (BCP)
Develop a disaster recovery plan (DRP), including RTO’s and RPO’s
Collaborate with business leaders and peers in establishing right fit/compliant policies & practices
Appropriately influence leadership and peers to understand the risks and needs for appropriate standards
Help to establish Vision (What we are working to achieve) and Strategy (how we get there) to leadership
Establish a practices repository for all efforts
Establish a corporate dashboard to reflect progress to goals and report on to senior leadership
Define toolsets necessary to achieve the targeted levels of security and proactive management
Establish a glossary of terms for leadership
Perform ongoing analysis of security tools
Manage cybersecurity incidents and conduct client triage/forensic analysis of cyber-attacks


SPECIFIC COMPETENCIES:

Ability to influence through established knowledge, engagement with leadership and peers
Engagement in industry practices to continue tuning practices
Ability to take a complex subject and simply and automate practices to ensure right accuracy of information
Balance of standards and being flexible (to the right amount) for adoption and support of standards
Successful working in a team oriented, collaborative environment


POSITION REQUIREMENTS:

Minimum 5 years’ Experience in Cyber Security Practices
CISSP Certification or equivalent experience
Experience with Cyber Toolsets in Operations & Analytics
Must have familiarity with CMMC and NIST
Advanced knowledge of network monitoring, SEIM, and incident response/threat hunting tools
Experience with SOAR products a plus
Demonstrated business support behavior (willingness to engage and “do” some of the work to achieve goals)
Capability of communicating and engaging executive leadership with presentations and team discussions.