Senior Manager, Cyber Security

World Fuel Services Full Time Miami, FL, USA , Remote United States Information Security - Security Engineer

Job Expired

World Fuel Services, is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

This is a senior manager leader with supervisor responsibility. This position has formal responsibility for the work products (timing, budget, quality, completeness) of their team. The position provides guidance and technical/business expertise and adds measurable value through planning, coordination and/or communication. These work products include:

  • Sets vision and direction of information security engineering program at World Fuel Services
  • Assist the Chief Information Security Officer with the definition and implementation of security architecture; security tool ecosystem; and liaise with/advise the infrastructure, devices, data, networking, cloud, and application development teams on security engineering requirements and best practices
  • Independently contribute as well as lead the Information Security Engineering team in generating ideas and process improvements and look for creative solutions and pragmatic methods to continuously improve information security at WFS
  • Make appropriate, timely and effective decisions that support the company and its business
  • Define information security Key Risk Indicators for the organization to mitigate as necessary and Key Performance Indicators to monitor operational performance
  • Work with domain architects to ensure IT and Cybersecurity architecture/designs, plans, controls, processes, standards, policies, and procedures are appropriately aligned with IT standards and overall IT and Information Security policies and best practices
  • Represent information security considerations in approved System Development Life Cycle, Change Management, Production Support, and technology-enabled projects
  • Support the cause of Information Security throughout the company by actively participating as advisor to senior IT Management
  • Ensure automation is adopted as a core tenant of Security Engineering
  • Create and maintain security related documentation as it relates to designs/configurations, processes, standards, and recommendations
  • Prepare and publish Information Security reports as directed by management.

Requirements

The incumbent has in-depth knowledge and expert status in one or several key areas of expertise that is central to the company’s success. The position knows how their discipline interrelates with other parts of the company.

The following technical experience is highly recommended:

  • Experience in all multiple security engineering facets (cloud security, endpoint security, application development security, data security, infrastructure security, etc.)
  • Experience defining and employing security engineering solutions that effectively address vulnerabilities and maintain operational stability
  • Experience with AWS Well-Architected Framework with emphasis on the ‘Security‘ pillar and AWS Security Reference Architecture (AWS SRA), knowledgeable and experienced with common Cloud reference architectures, security standards, best practices, control frameworks and an eye towards simplification
  • Experience with Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM)
  • Provide expert advice and consultancy to customers on risk assessment, incident triage, threat modeling, and security vulnerability mitigation
  • Experience leading, developing, and establishing best practices in a security engineering function
  • Experience with mapping and reporting security programs against NIST Cybersecurity Framework, Secure Control Framework, Cloud Security Alliance (CSA) Cloud Control Matrix (CCM), highly desired
  • Experience with NIST 800-160, Systems Security Engineering highly desired

The position requires the following management skills and experiences:

  • Has lead successful security engineering teams in implementing modern practices
  • Strong analytical, prioritizing, interpersonal, problem-solving, and presentation, project management (from conception to completion) and planning skills
  • Experience with Agile methodologies/framework
  • Strong verbal and written communication skills
  • Strong negotiation, mediation, and influencing skills
  • Maturity, reliability, composure, and stability under pressure
  • Ability to adapt to new situations, people, ideas, procedures and to accommodate a constantly evolving work environment
  • Strong communication skills and experience working with senior leadership: role must communicate effectively with Senior Executives in departments including Legal, Internal Audit and Human Resources, as well as M&A staff.
  • Build successful relationships with customers, co-workers, internal audit, and executive management
  • Good listening skills and patience with others

The following credentials, licenses, and/or degrees are desired but not required if appropriate experience exists:

  • CISSP: Certified Information Systems Security Professional
  • CISSP-ISSEP: CISSP-Engineering concentration
  • CISSP-ISSAP: CISSP-Architecture concentration
  • AWS Certified Solutions Architect Professional
  • AWS Security Specialty Certification
  • Certified Cloud Security Professional (CCSP)
  • Certified Cloud Security Knowledge (CCSK)
  • B.S. in Computer Science, Cybersecurity, Management Information Systems, Engineering, or related technical field

Job ID : R13934

More Information

  • Address Miami, FL, USA
  • Salary Offer $100.000 ~
  • Experience Level Senior
  • Total Years Experience 5-10
  • This job has expired!

Leave your thoughts

Share this job