Program Manager /Infosec/Patch Management
Description:
*** Candidate Must Have's on a resume and for submittal:
1. How many years working with: Project Management
2. How many years working with: Infrastructure security
3. How many years working with: Certifications
4. How many years working with: Infrastructure
5. How many years working with: Cloud Security
Must have Knowledge, Skills, and Abilities:
(5) years of enterprise-class information technology and security vulnerability management experience with the capabilities in elevating a vulnerability program with proper reporting in place and ability to identify enhancements.
(5) years of relevant experience in a supervisory capacity managing small to medium sized teams in a large IT enterprise environment.
Strong hands-on experience and knowledge with Cloud Technologies: (e.g., related to Fundamentals, Security, Amazon AWS, Microsoft Azure, Google Cloud Platform).
Strong knowledge and experience evaluating, designing, testing, and supporting hardware and software-based security.
Strong knowledge and experience with information security and network communications practices and principles, technologies, and systems.
Proficient knowledge and experience with vulnerability scanning plus risk and mitigation best practices.
Ability to stay knowledgeable of cybersecurity trends and emerging threats.
Proficient knowledge and proven experience with the following skillsets:
Networking/Data Communications
Risk Management
Operating Systems (e.g., Windows/Linux)
Vulnerability management tools such as Tenable and Palo Alto Xpanse
Other Security Tool sets/categories (e.g., Firewalls, Routers/switches, Database, Web Servers, Applications); Common vulnerabilities, CVEs, and CWEs; Encryption and cipher technologies
Experience with security frameworks such as NIST (e.g., NIST 800-53) and CIS.
Demonstrated experience and success with development and promulgation of enterprise-class security policy and standards.
Demonstrated experience and success with completion of risk assessments and vulnerability assessments.
LAN/WAN operational experience, including networking, OS, web/application/Database servers, storage, hardware, firewalls, and monitoring and detection tools.
Excellent people management, communication, and customer interaction skills.
Ability to work independently, manage projects, and exercise judgement in reaching solutions.
Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.
Demonstrated ability to communicate effectively, both orally and in writing.
Experience in scrum, kanban and SAFe. Certification(s):
• CISSP, A+, Security+, CEH, CISA, CRISC, or other IT security operations/vulnerability management certifications required