Search
Header navigation
Director IT Security

Director IT Security

companyCherokee Nation Businesses
locationTulsa, OK, USA
remoteOnsite
PublishedPublished: Published 3 weeks ago
IT

Job Description

SUMMARY

Provide cybersecurity leadership over the Cherokee Nation Business, in partnership with CNB’s VP CIO/CISO including but not limited to cybersecurity strategy, including the design, implementation, and maintenance of security protocols to protect critical data and infrastructure, managing a team of security professionals, and ensuring compliance with industry regulations. Remain updated on emerging cyber threats and vulnerabilities to ensure the organization’s digital assets are safeguarded against identified threats.

Evaluate, develop, coordinate, and oversee the implementation and execution of security policies, procedures, and cybersecurity programming. Manage the day-to-day 24x7 security operations in partnership with designated 3rd party managed services partners. Provide regular reporting on the state of our cybersecurity readiness to management, lead the enterprise cybersecurity incident response activities, coordinate cybersecurity awareness programming, and keep current the enterprise cybersecurity risk register.

Responsibilities

ESSENTIAL DUTIES AND RESPONSIBILITIES

Includes the following:

  • Provides ‘hands on’ leadership to direct cybersecurity resources and managed services vendors to provide identification, protection and response for cybersecurity functions.
  • Provides resource and vendor management to ensure cybersecurity operational SLAs are adhered to, continuous business operations, and projects are completed on time and within budget.
  • Leads cybersecurity resources in the protection and sustainment of a secured environment through documented remediations and review of current protocols for effectiveness to cybersecurity protection, detection, and response,
  • Provides technical leadership in the design/implementation of security architecture technology including but not limited to network, workstations, applications, and cloud services.
  • Leads event/incident response related to cybersecurity including but not limited to breach investigations, containment, forensic, and after-action writeup/review.
  • Develops and implements, in partnership with other departments and business units, employee cybersecurity awareness training programs.
  • Maintains, revises, and develops as needed, processes, procedures, and policies for areas of responsibilities to mitigate emerging threats and ensure a secure operational environment.
  • Focuses on aligning IT cybersecurity operations and resources to meet established cybersecurity objectives, projects, and priorities.
  • Oversees regular cybersecurity exercises, pen tests, and 3rd party assessments.
  • Advises VP CIO/CISO on all matters related to cybersecurity and ensures timely communication regarding all cybersecurity operational issues and project status.
  • Manages assigned budget for operations or projects.
  • Required to be on call 24x7x365.
  • Performs other job-related duties as assigned.
  • Develops, publishes, educates, and maintains comprehensive enterprise-wide information security strategy, plans, policies, procedures, and guidelines.
  • Recruits, mentors, develops, and retains a staff of security minded technology security professionals fostering a culture of collaboration and accountability.

SUPERVISORY/MANAGEMENT AUTHORITY

Supervise/manages staff having authority over hiring/firing/performance decisions.

Qualifications

EDUCATION AND EXPERIENCE

Bachelor’s degree in information technology or related field and 13 years of Cybersecurity/IT leadership experience in a mid/large-sized environment or an equivalent combination of education and experience. Must have10+ years in technology management with 5+ years management of cybersecurity teams and projects. Must also have 4+ years’ experience in Azure cloud security, and 5+ years’ experience in establishing cybersecurity baselines and associated cybersecurity programs, and 5+ years of proven security architecture experience. Master’s degree in information security or related degree preferred.

KNOWLEDGE, SKILLS AND ABILITIES

  • Proven experience in being self-motivated and directed with ability to effectively prioritize and execute tasks in a fast-paced and time sensitive environment.
  • Demonstrated leadership abilities with strong verbal, written, collaboration, and presentation skills to leadership and cross functional teams.
  • High level of integrity, professionalism, and attention to detail.
  • Strong analytical and problem-solving skills to identify and respond to potential cyber threats.
  • Proven knowledge of cybersecurity for enterprise-wide multi-platform operating system security, network security, application security, database security, regulatory compliance, and risk management.
  • Deep understanding of cybersecurity principles and frameworks including but not limited to network, application, threat intelligence, incident response, vulnerability management, risk management, and reporting.
  • Ability to lead cybersecurity assessments, compliance management, and risk assessments.
  • Knowledge of emerging cybersecurity threats, services, technologies, and tools.

WORK ENVIRONMENT

Work is primarily performed in a climate-controlled office setting. Some travel required.

Job Info

  • Job Identification 27094
  • Job Category Information Technology Services
  • Posting Date 01/14/2025, 12:04 PM
  • Degree Level Bachelor's Degree
  • Job Schedule Full time
  • Job Shift Day
  • Locations Tulsa - Marshall Building (OK) (On-site)
  • Regular or Temporary Regular