Cyber Security Manager

Manager - Cyber Security

Job Description

This position will be responsible for managing the company's cybersecurity function. This will include implementing security policies, processes, and solutions; coordinating vulnerability management and incident response; educating employees on security awareness; and collaborating with the Information Technology team and business units to develop and maintain adequate controls for security risk management.

Primary Duties / Responsibilities:

Manage the Cybersecurity function and provide recommendations for improving the organization's IT and OT security infrastructure based on best practices and regulatory standards (i.e., NIST, etc.).

Define, implement, and enforce security policies and procedures and train team members on network and information security processes and procedures.

Manage the organization's Incident Response Plan and assist the teams with coordinating incident response activities. Identify any gaps or weaknesses and recommend corrective actions.

Partner with business stakeholders to raise awareness to risk management concerns.

Coordinate with third party security providers on SOC monitoring, pen testing, vulnerability scans, periodic risk assessments and other services. Collaborate on strategies to mature the environment.

Review vulnerability scans and other security reports to assess results and determine appropriate actions. Coordinate with the appropriate IT groups and SOC on investigation and remediation activities.

Promote Security Awareness through training, education, phishing campaigns, and ongoing communication. Coordinate activities around the annual Cybersecurity Awareness Month campaigns.

Prepare monthly, quarterly, and annual tracking reports on various cyber security metrics.

Oversee the IT vendor management and selection process to minimize security risks associated with gaining access to the organization's confidential data.

Present cybersecurity updates to Management, the Audit Committee and other business stakeholders.

Assist with the overall business technology planning, providing current knowledge and future vision of security solutions.

Review third party contracts related to security related purchases or services.

Stay updated on security best practices, new or improved security technologies, and emerging threats or attack vectors.

Perform other related tasks that may be assigned.

Education, Skills and Abilities Required:

Bachelor's degree in cyber security, Information Technology, or a related field.

Minimum of 5 years of experience in a cybersecurity managerial role and 10 years in an IT or security related position with progressively increasing responsibilities.

Strong understanding of cybersecurity frameworks, risk management, and compliance regulations.

Experience with security incident and investigation reports/briefings.

Experience implementing security standards including NIST, ISO 27000 series, IEC 62443, etc.

Strong documentation skills.

Preferred Skills

Solid experience with advanced Microsoft Word, Excel, and PowerPoint.

Advanced technical writing and editing skills.

Helix Energy Solutions Group is an equal opportunity employer.