IT Cyber Security Manager

STV is seeking an IT/Cyber Security Manager.

In this highly visible position, you will be the point of contact to lead and support IT/Cyber Security activities for the company.

This position reports to the CIO.

In this position, you will: Be a core member of the IT Management team.

Work to ensure the confidentiality, integrity, and accessibility (CIA) of STV’s data.

Develop and Manage an IT/Cyber Risk Management Program to: Assess information security risk and advise of mitigation recommendations Manage the review and revision of information security policies, standards, best practice and budget recommendations Assess currently deployed security solutions, improve efficiencies, and identify other risk management solutions or controls that may need to be implemented within STV’s environment Ensure that STV’s data protection requirements meet or exceed expectations of applicable regulations and/or guidance (CCPA, HIPPA, NIST 800, ISO 27001, SOC 2,etc.), to include client, partner, and government Establish procedures and processes, tools and technologies to continuously monitor the activities and behaviors of devices connected to the company’s IT network Develop and implement audit activities to provide oversight of internal compliance with information security policies and procedures and make recommendations to effect change when necessary Analyze reports generated by the monitoring system to identify trends that might indicate a future risk Provide guidance for employees, explaining security risks and demonstrating good practices Provide oversight of third-party vendors to ensure compliance with information security standards and requirements Review agreements and contracts for information security requirements Enforce IT security policies and incident reporting.

Knowledge and Skills Proven experience in information security / information technology risk management domains (e.g., network security, infrastructure security, identify and access management, vulnerability, and cyber threat assessment, host/endpoint security, etc.) Broad knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, and other relevant security-related standards/regulations.

Demonstrated experience in IT/Cyber incident response and management Experience in developing and managing NOC/SOC facilities, systems, and operations Strong analytical and logical problem-solving skills Strong interpersonal communication and relational skills, good organizational and project management skills; sound judgment; initiative; flexibility; detail-oriented Strong technical hands-on experience with Firewalls, Routers, SIEM tools, DLP, NOC/SOC operations and other cyber security related services and technologies Full working knowledge of IT network security, end-user device security, Point of Presence (POP); IDF, MDF closets, Main Point of Entry (MPOE), server, OS, and DB security, and application security Experience partnering with external managed security service providers.

Background and Experiences Minimum 10 years proven experience as an IT/Cyber Security Manager at a corporate level Bachelors degree required in Computer Science, Information Technology or related field.

Master’s degree is preferred Experience in working in a company with government, defense industrial base, transportation, and other critical infrastructure organizations Industry relevant certifications such as CISSP, CISM, CCSK, GSLC, GISP, CISCO or equivalent.