|Director - Cybersecurity|
Company: YMCA of The North
Location: Minneapolis, MN
Employment Type: Full Time
Date Posted: 05/26/2023
Expire Date: 07/26/2023
Job Categories: Installation, Maintenance, and Repair
Director - Cybersecurity|
Are you an Information technology visionary leader? Do you thrive at finding new ways to keep data and systems safe? The Information Systems Security Cyber Director (IT) contributes toward the success of our technology initiatives. The Information Systems Security Cyber Director (IT) oversees the development and maintenance of encryption technologies that enable the enterprise information security program. The Information Systems Security Cyber Director (IT) is responsible for leading a small team of information system security (Cyber) professionals (IT) that ensure information technology security (Cyber/IT) goals are met. The Information Systems Security Cyber Director (IT) is responsible for all cyber and information technology security training to ensure employees understand how to safeguard information with their systems. The Information Systems Security Cyber Director (IT) identifies information security concerns through a threat analysis and updates on threats, exposures, Phishing attacks, and other information technology breaches. The Information Systems Security Cyber Director (IT) will manage the IT business recovery plan and testing of systems.
The Security Director is the focal point of all security issues relating to the YMCA of the North with a major focus on PCI and HIPAA compliance. The incumbent manages the on-going security remediation, project management, administration, and security application support to safeguard the organization’s information. The incumbent provides leadership over the implementation of information security strategies, IT controls, leads information security initiatives and conducts risk analyses on information systems, platforms, and processes. The incumbent evaluates the IT infrastructure and establish controls to align to industry best practices.
Responsible for leadership and guidance in all aspects of cyber and physical security and security training to YMCA of the North personnel.
Manage all aspects of projects relating to PCI and HIPAA assessments and controls.
Develop and define security standards which incorporate practices, processes, and compliance requirements.
Identify key security concerns based on threat analysis, provide recommendations on threat prevention based solutions and manage the implementation of the solutions.
Manage the YMCA Security Committee’s meetings and team site.
Manage the IT Business Recovery Plan and oversee annual testing of major systems, networks and applications. Act as a resource in the event of disaster or disruption.
Write, review, implement, update and document company wide information security policies, procedures and documents.
Plan, develop and deliver security measures and training to safeguard information against accidental or unauthorized modification, destruction, or disclosure.
Build, maintain an organizational-wide security blog. Responsible for creation and posting of informational content pertaining to security best practices, tips of the week and security alerts.
Administer and maintain security tools, products and systems including but not limited to Symantec or Microsoft DLP, SIEM, SolarWinds Patch management, Cisco ASA appliances.
Report to management on current threats, exposures, breaches, Phishing attacks, Ransomware attacks and the details of short and long term risk level.
Technical subject matter expert in addressing security related issues in a timely and cost effective manner.
Monitor security logs and act on security incidents as appropriate.
Ensure patch management is maintained.
Perform internal and external vulnerability scans and penetration tests.
Maintain continuing education/specialization in the security field.
reporting. This position engages outside contractors and manages their performance to established expectations.
This position reports to the SVP of Information Technology who reports to the Chief Financial and Administrative Officer. The incumbent interacts regularly with branch and Association staff while providing support for security incidents and
This job description represents the major functions of the position but is not intended to be all-inclusive. The incumbent is also responsible for taking direction from other senior level team members or their representatives in completing projects or performing duties deemed necessary for the branch or Association success.
Diversity, Equity and Inclusion Pledge
The Y of the North is committed to the work and everyday practices of eliminating disparities and eradicating of unjust systems to become a multicultural, anti-racist and anti-oppressive organization. YMCA of the North team members and volunteers must exemplify the association’s mission, vision and values of caring, equity, honesty, respect and responsibility.
The YMCA of the North continues to develop plans and strategies to ensure team members and volunteers reflect the demographics of the communities we serve. We will continually conduct institutional racism and oppression review of our policies, procedures and practices in recruitment and selection; compensation and benefits; professional development and training; promotions; transfers; layoffs; terminations; and the ongoing development of a multicultural, anti-racist and anti-oppressive work environment and culture that promotes equity and respect for the human dignity of all. We value and respect this diversity and choose to be inclusive through our acceptance of all.
Job Type: Full-time
Salary: From $145,000.00 per year
Employee assistance program
Flexible spending account
Health savings account
Paid time off
Bachelor’s degree in computer science or equivalent experience.
Minimum of 7 years of experience in IT/Corporate Security/Information Security.
Current CISSP and/or CISM Certification.
Experience with gap analysis, reporting, developing and performing user education (training) with ability to see how changes affect end-users.
Ability to be agnostic in their recommendations (consultant mindset).
Must have strong analytical, critical and process orientated thinking and problem solving skills.
Experience with setting up and tuning a SIEM system.
Experience with approved qualified scanning vendor tools and ability to set up scans and interpret results.
Strong security knowledge and conceptual understanding of current technologies such as Unified Threat management systems, firewalls, VPNs, IDS/IPS and other security devices. Cisco ASA experience a plus.
Experience with and understanding of remote access technologies and encryption.
Familiarity and use of security compliance methodologies (NIST, SAS etc.)
A broad understanding of the security landscape and its business context/ impact.
Familiarity with access control systems and physical security concepts.
Advanced knowledge of network security infrastructure, risk analysis, data/voice communication systems, services and system/network configurations as well as network operations, design, and systems management.
Exceptional written and verbal communication skills, including the ability to describe technical mechanics and put them into a humanized context.
Proficiency with MS Office suite of products.
High level Experience with Microsoft O365, Exchange and Azure security suite.
Excellent customer service orientation and ability to communicate with users at all levels of computer proficiency.
Integration and automation of disparate security controls, applications and tools.
Penetration testing experience.
CompTIA Security+ certification a plus
Symantec DLP (Vontu) experience a plus
Microsoft Security suite experience.
Must be able to work on a computer for extended periods of time
Ability to travel locally to various YMCA locations
Ability to respond to security situations after normal business hours
Ability to lift and carry boxes containing computer hardware, up to 50 pounds, during the configuration and installation process.
Company Name: YMCA of The North
© 2023 YMCA of the North The YMCA is a 501(c)(3) not-for-profit social services organization dedicated to Youth Development, Healthy Living, and Social Responsibility.