Onsite Cyber Security Manager in Richmond, VA

JOB SUMMARY:

The Cybersecurity Manager is tasked with leading a team of cybersecurity specialists, guiding the strategic direction and operational execution of cybersecurity measures, and ensuring alignment with compliance standards and certifications. This role requires a balance of leadership, in-depth knowledge of cybersecurity principles, and a detailed understanding of compliance frameworks.

RESPONSIBILITIES

Lead a skilled team of engineers and compliance specialists in protecting the organization's IT infrastructure. Promote a culture of security awareness.

Direct proactive cybersecurity strategies across the enterprise to guard against threats and ensure the security of all technical assets.

Manage the Security Awareness Program, emphasizing employee education on cybersecurity, especially phishing prevention.

Oversee the identification and mitigation of security risks through a robust Vulnerability Management process.

Ensure secure management of Cloud services and maintain strong standards for evaluating and certifying 3rd Party Vendors and other partners.

Prepare Incident Response strategy including policy and playbooks. Directly lead the response to security incidents from detection and evaluation through to mitigation, forensics and reporting.

Evaluate, Implement and Supervise the operation of key Enterprise Security Tools and cybersecurity partnerships, including all assets and tools required to effectively respond to incidents.

Drive the selection and management of cybersecurity vendors, ensuring they meet the organization's standards for security and compliance.

Oversee server and endpoint security standards, firewall configurations, and device hardening practices to protect against unauthorized access and threats.

Ensure compliance with SOX, and other relevant standards by managing audit preparations and ensuring documentation is maintained.

Coordinate security improvement efforts across the IT teams and business teams.

EDUCATION AND EXPERIENCE REQUIRED

8+ years in Information Technology, with a focus on cybersecurity management.

Bachelor's degree required; Master's in a related field preferred.

Industry-recognized security certifications or degrees preferred.

Proficiency in managing compliance processes, and familiarity with standards such as SOX, TISAX, GDPR, ISO 27001, and SOC 2.

SKILLS AND COMPETENCIES

Proven leadership in managing IT teams.

Strong understanding of cybersecurity principles and technical implementation.

Strong understanding of compliance requirements and organizational execution.

Ability to effectively communicate complex concepts to a variety of stakeholders.

Strategic Incident Response design and implementation experience.

Strategic thinking, with a focus on risk management and organizational security.

Excellent organizational skills for managing multiple projects and initiatives.