Cybersecurity Operations & Data Protection Manager

We believe in flexibility for you to explore your passions while making an impact through meaningful work within our inclusive workforce. That’s what #LifeAtCummins is all about.

Cybersecurity Operations & Data Protection Manager

Description

We are looking for a talented Cybersecurity Operations & Data Protection Manager to join our team. This position is considered Hybrid and is located in Nashville TN, but also open to remote as well.

We do offer full relocation to Nashville TN.

In this role, you will make an impact in the following ways:

• Responsible for ensuring information and data on computer systems is protected and all networks and computer systems are adequately secure to prevent unauthorized access.
• Leads execution of complex response to computer security incidents according to the Information Security Policies and Industry Best Practices.
• Contributes to a team of cyber security professionals in a leadership/coach/mentor capacity while working with threat data, writing reports, briefing event details to leadership, and coordinating remediation with personnel.
• Monitor information security related web sites (SANS Internet Storm Center, etc.) and mailing lists (BugTraq, etc.) to stay up to date on current attacks and trends.
• Provide guidance to tier one and other first responders for proper handling of Information Security incidents
• Develops requirements for technical capabilities for cyber incident management. Recommends configuration changes to improve the performance, usability, and value of cyber analysis tools.

To be successful in this role you will need the following:

• Cyber Security Threat Analysis – Assesses internal and external Cyber Security attacks using Cyber Security standards and tools to identify specific vulnerabilities.
• Cyber Security Defense Operations – Performs operations according to the Cyber Security Operations Plan to detect and mitigate potential or real-time internal and external threats.
• Cyber Security Incident Response – Investigates and analyzes relevant response activities using incident response plans to end malicious activity and restore Cummins business operations.
• Balances stakeholders – Anticipating and balancing the needs of multiple stakeholders.

Education, Licenses, Certifications

College, university, or equivalent degree in Cyber Security, Information Technology or a related subject or equivalent industry experience required

This position may require licensing for compliance with export controls or sanctions regulations.

Experience

Significant level of relevant work experience required

• Lead and manage all security operations for the organization

• Lead and manage business resiliency and the incident response lifecycle, coordinate incident response

• Develop and implement monitoring capabilities

• Develop and implement strategies to reduce operational risk

• Drive creation of processes and procedures to effectively monitor, detect and mitigate Cloud threats

• Conduct red team/blue team/purple team exercises

• Drive and manage the vulnerability assessment and asset management lifecycle

• Ensure alerts to tooling and other monitoring telemetry is actioned according to predefined SLAs

• Work closely with the Cybersecurity Engineering to establish a regular cadence for internal and external penetration testing for all products and cloud-hosted applications

• Deep technical knowledge and experience in Security Information & Event Management, threat intelligence platforms, vulnerability assessment tools, Cloud platforms, Endpoint Detection & Response, Cyber threats and attack vectors, exploitation methods, IOC and TTP’s, Infrastructure and Application security in a distributed environment

• Experience in Threat modeling, Threat hunting and intelligence, Incident Response Tabletop exercise, and process automation

• Certifications: Information Security certifications (CISSP, SANS GIAC, CISA, etc.)

• Work closely with IT and business teams on the operation of Data Protection related technology

• Define key performance indicators (KPIs) and key risk indicators (KRIs) for data governance and protection controls

• Work with Data Protection technologies such as Netskope (CASB), O365 (DLP), Forcepoint (DLP), BigID and Microsoft Information Protection (MIP)

Compensation and Benefits

Base salary rate commensurate with experience. Additional benefits vary between locations and include options such as our 401(k) Retirement Savings Plan, Cash Balance Pension Plan, Medical/Dental/Life Insurance, Health Savings Account, Domestic Partners Coverage and a full complement of personal and professional benefits.

Cummins and E-verify

At Cummins, we are an equal opportunity and affirmative action employer dedicated to diversity in the workplace. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, gender, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity and/or expression, or other status protected by law. Cummins validates right to work using E-Verify. Cummins will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization.

Job SYSTEMS/INFORMATION TECHNOLOGY

Primary Location United States-Tennessee-Nashville-US, TN, Nashville, Filtration Headquarters

Job Type Experienced – Exempt / Office

Recruitment Job Type Exempt – Experienced

Job Posting May 27, 2022, 9:35:46 AM

Unposting Date Ongoing

Organization Cummins Filtration

Req ID: 220003TW