Jobs · Arizona

Security Operations Manager

CIM Group · Phoenix, AZ · 3 days ago
HybridFull-time

About the role

The Security Operations Manager at CIM is responsible for ensuring the organization's readiness to prevent, respond to, and recover from cybersecurity incidents. This role involves managing the organization's cybersecurity posture, monitoring alerts, responding to incidents, and coordinating with various teams to ensure effective controls and risk management.

Responsibilities

  • Ensure security alerts and anomalous activities are continuously monitored, accurately logged, and escalated in accordance with established procedures
  • Lead and coordinate timely, effective response to cybersecurity incidents to minimize business impact
  • Support restoration of affected systems and services following cybersecurity incidents, including leading forensic investigations as required
  • Research emerging threats and attack vectors, and implement appropriate countermeasures to continuously strengthen the organization’s security posture
  • Coverage of internal and external penetration testing activities to identify and remediate exploitable weaknesses
  • Risk Management, Controls & Assurance: Ensure protective security controls are implemented and operating effectively to reduce risk exposure; coordinate with compliance and IT teams to design, implement, and maintain operational security controls; support asset cataloging and ownership alignment to ensure accountability for systems, data, and security controls; execute quarterly User Access Reviews across the application portfolio in an efficient manner; respond to external audit and compliance questionnaires, providing accurate and timely security documentation and evidence
  • Security Awareness & Enablement: Ensure employees, vendors, and/or contractors with access to systems and data are appropriately trained in relevant security awareness and individual security responsibilities; design, manage, and enforce the organization’s security awareness program, including the execution of recurring phishing simulation campaigns; support the development, testing, and ongoing improvement of Disaster Recovery plans to ensure the organization can effectively respond to and recover from disruptive events, including cybersecurity incidents; serve as a trusted security advisor to internal teams, raising awareness and providing guidance to help protect products, systems, and services from known and emerging threats

Qualifications

  • Minimum 8 years of Cybersecurity analyst/management experience
  • Bachelor’s Degree in a technical field required
  • CISSP or CISM certification strongly preferred
  • Formal training in Cybersecurity governance, risk, and compliance (GRC)
  • Understanding of Cybersecurity communities (OWASP)
  • Understanding of SOC 2, SOX, NIST, and GDPR compliance

Skills and Abilities

  • Expert knowledge of information security principles, practices, and architectures
  • Expert knowledge with Threat Detection, Email Security, DLP, Data Governance tools such as Proofpoint, MS Defender, or Mimecast
  • Hands-on experience with the development of Cybersecurity Training and Phishing Campaigns
  • Experience with leading Disaster Recovery programs
  • Experience with Vulnerability Management Platforms such as Rapid7 and Qualys
  • Experience with Patch Management platforms such as SCCM and Ivanti
  • Understanding of supporting technology audits and testing technology controls
  • Understanding of cloud environments such as Azure, Salesforce.com and Office365

Performance Metrics

  • Regular reporting of key Cybersecurity metrics for the company to executive management
  • Year over year Improvement of scores within the vulnerability management platform
  • Meet all compliance requirements related to Cybersecurity
  • Timely completion of preventive Cybersecurity measures such as User Access Reviews, End User Cybersecurity Training, and Phishing Campaigns
  • Reduction of Cybersecurity issues uncovered by 3rd party security testing and compliance audits
  • Disaster Recovery readiness score

What CIM Offers

  • A competitive compensation plan
  • A comprehensive benefits program including medical, dental, and vision benefits, health savings account, company-paid life and disability insurance, 401(k) savings plan with company match, paid time off, bereavement leave, volunteer time off, and parental leave
  • Ongoing professional development programs
  • A wellness program, including monthly and quarterly prizes
  • And more!

How We Feel About Diversity and Inclusion

At CIM Group, we believe that the unique perspectives and backgrounds of our employees enhance everything we do. We are committed to fostering an inclusive environment where diversity is not only respected but celebrated. We strive to ensure that our workplace is free from discrimination and harassment, allowing everyone to contribute meaningfully and feel a sense of belonging. As an equal opportunity employer, we strictly prohibit any form of unlawful discrimination and adhere to the laws enforced by the EEOC. Our goal is to provide a safe and supportive environment where all employees can grow and make impactful contributions together.

Similar jobs

Operations Manager

Allied UniversalMenomonee Falls, WI· 1 wk ago
Managementapply on diversifiedm-aus.icims.com

Operations Manager

Morgan Advanced MaterialsElkhart, IN· 1 mo ago
Managementapply on careers-morganplc.icims.com

Operations Manager

BrightView LandscapesBluffton, SC· 1 mo ago
Managementapply on brightviewcareers.com

OPERATIONS MANAGER

City Electric SupplyRockville, MD· 2 mo ago
Managementapply on paycomonline.net