Description POSITION DESCRIPTION: EnFin is looking for a well-rounded hands-on security-minded individual experienced in multiple domains within security. This individual will be responsible for overseeing the cloud infrastructure and application security for the entire organization. The Information Security Manager is responsible for safeguarding all IT Assets by monitoring security operations, responding to threats, remediating issues, and maintaining security applications and technologies. This position will be based out of one of our offices in Irvine, CA; San Francisco, CA; or Teaneck, NJ, with an in-office schedule that is set at the direct manager's discretion in accordance with the company policies and procedures. Remote options are available for exceptional cases.
RESPONSIBILITIES - Develop, implement and maintain the enterprise information security strategy and roadmap.
- Lead and support continuous improvement projects to deploy, consolidate, enhance, and/or secure enterprise IT systems and services.
- Manage day-to-day security operations (threat detection, respond, remediation, perform digital forensics, incident management, problem management, change management, vulnerability management, monitoring, and compliance)
- Ensure proper back up and disaster recovery are in place and proactively monitored to achieve service level agreements (SLAs) for Recovery Point Objective (RPO) and Recovery Time Objective (RTO).
- Ensure compliance with financial services regulations related to security (e.g., SOC 2, GDPR), and assist in audits and certifications.
- Monitor and secure EnFin's cloud environments (e.g., AWS, Azure, Salesforce) using security information and event management (SIEM) tools, and cloud-native security solutions.
- Investigate and respond to security incidents, ensuring proper containment, remediation, and documentation of root causes.
- Design and implement robust security policies and procedures in accordance with industry best practices, such as zero trust architecture, identity and access management (IAM), and data encryption.
- Evaluate, recommend and implement new solutions that enhance security posture.
- Oversee end-users access management throughout the organization. Conduct and assist with regularly scheduled user access reviews in active directory and other applications as needed.
- Conduct regular security awareness training focused on security best practices for all employees.
- Stay current with emerging security trends, threats, and technologies to continuously improve EnFin's security strategies.
- Collaborate with IT and development teams on security best practices.
- Operate in a manner demonstrating a high level of integrity, ethics, and discretion when handling sensitive and confidential information.
REQUIRED QUALIFICATIONS - Bachelor's degree in information security, Computer Science, or a related field, or equivalent experience with a minimum of 8+ years of experience in cloud security, cybersecurity, or a similar role, with hands-on experience in securing cloud environments (AWS, Azure, Salesforce).
- Strong knowledge of cloud security concepts such as IAM, security groups, VPC, encryption (at-rest and in-transit), and cloud monitoring.
- Familiarity with regulatory frameworks applicable to cloud environments in financial services (e.g., SOC 2, GDPR).
- Experience with security incident response in cloud environments, including logging, alerting, and forensic investigation.
PREFERRED QUALIFICATIONS - Strongly Preferred: CompTIA Security +, CISSP (Certified Information System Security Professional), CISM (Certified Information Security Manager), CompTIA A+, CCSP (Certified Cloud Security Professional).
- Strong understanding of zero trust security principles and implementation in cloud environments.
Hanwha Q CELLS America Inc. ("HQCA") is a Qcells company, one of the world's largest manufacturers and providers of solar photovoltaic (PV) products and solutions. Headquartered in Irvine, California, HQCA has been rapidly expanding its business in North America through the expansion of products and solutions, including distributed energy solutions, direct-to-homeowner solar sales and financing, and EPC services. We provide an opportunity to be part of an exciting and growing world-class global business in an interesting and expanding industry of the future.
PHYSICAL, MENTAL & ENVIRONMENTAL DEMANDS: To comply with the Rehabilitation Act of 1973 the essential physical, mental and environmental requirements for this job are listed below. These are requirements normally expected to perform regular job duties. Incumbent must be able to successfully perform all of the functions of the job with or without reasonable accommodation.
Mobility Standing 20% of time Sitting 70% of time Walking 10% of time
Strength Pulling up to 10 Pounds Pushing up to 10 Pounds Carrying up to 10 Pounds Lifting up to 10 Pounds
Dexterity (F = Frequently, O = Occasionally, N = Never) Typing F Handling F Reaching F
Agility (F = Frequently, O = Occasionally, N = Never) Turning F Twisting F Bending O Crouching O Balancing N Climbing N Crawling N Kneeling N
The salary range is required by the California Pay Transparency Act and may differ depending on the location of those candidates hired nationwide. Actual compensation is influenced by a wide array of factors including but not limited to, skill set, education, licenses and certifications, essential job duties and requirements, and the necessary experience relative to the job's minimum qualifications.
This target salary range is for CA positions only and should not be interpreted as an offer of compensation.
You may view your privacy rights by reviewing Qcells' Privacy Policy or by contacting our HR team for a copy.