Share this Job

Information Security Manager

Apply now »

Last Updated Date: Apr 23, 2021

Location: West Fargo, ND, US, 58078

Company: Doosan Corp

Job Information

The Information Security Manager (ISM) acts as an interface between the IT Security and Risk Directors’ strategic and process-based activities and the work of the technology-focused analysts, engineers and administrators in the Doosan Process & Improvement Technology (PIT) department and the Doosan Digital Innovation America (DDIA) organization. The ISM will translate the IT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting. Expertise in leading project teams and developing and managing projects is essential for success in this role. The ISM must be able to prioritize work efforts — balancing operational tasks with longer-term strategic security efforts.

Role & Responsibility

Strategic Support

  • Support  and develop the security program and security projects to address identified risks and business security requirements.
  • Manage the process of gathering, analyzing and assessing the current and future threat landscape.
  • Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.

Security Liaison

  • Assist resource owners and IT staff in understanding and responding to security audit failures.
  • Provide security communication, awareness and training for audiences, which may range from senior leaders to field staff.
  • Work with various stakeholders to identify information asset owners to classify data and systems as part of a control framework implementation.
  • Work with the Director, IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
  • Provide support and guidance for legal and regulatory compliance efforts, including audit support.

Architecture/Engineering Support

  • Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
  • Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
  • Develop a strong working relationship with server, applications and networking engineering teams.

Operational Support

  • Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.
  • Manage and coordinate operational components of incident management, including detection, response and reporting.
  • Work with colleagues to support the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
  • Manage security projects and provide expert guidance on security matters for other IT projects.

Security Awareness, Education and Training

  • Define, develop and deliver information security awareness, education and training to ensure employees, contractors and key business partners are aware of their responsibilities.
  • Champion the SPOC (Security Point of Contact) program, working with the business teams to ensure awareness.

Job Requirement

  • Bachelor’s Degree in Information Security, Information Technology, or related major.
  • Preferred certifications: CISSP, CISM & CISA and equivalent.
  • Minimum of 8 years of work experience in IT Security or a related field.
  • Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (COBIT) frameworks.
  • Experience dealing with 3rd Party suppliers and defining security requirements.
  • Knowledge of modern network security technologies such as network and host-based IDS / IPS, vulnerability assessment (including OWASP DDOS, AV, Data Loss Prevention, Cloud Security, SIEM, Security incident response, and DevSecOps.
  • Good understanding of TCP/IP and associated protocols.
  • Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies.
  • Knowledge of, and experience in, developing and documenting security architecture and plans, including strategic, tactical and project plans.
  • Strong conceptual thinking and communication skills - the ability to conceptualize complex business and technical requirements into comprehensible models and templates.
  • Ability to work well under minimal supervision.
  • Demonstrated leader with team-oriented interpersonal skills, with the ability to interface  effectively with a broad range of people and roles, including upper management.
  • Strong written and verbal communication skills.
  • High levels of integrity in the conduct of personal and professional affairs.
  • Calmness and clarity of thought under pressure and ability to maintain confidentiality.
  • Ability to maintain the goals and culture of the organization.
  • Understanding of strategic business objectives and the ability to drive results toward those objectives.
  • Travel Required: <10%.
  •  
  • #zrco
     

Doosan Bobcat, a leading global manufacturer of construction, agriculture and landscaping equipment, attachments and services, is committed to empowering people to accomplish more.

As a part of the Doosan Group, which employs more than 43,000 people in 38 countries worldwide, the company offers its customers products and solutions to help build stronger businesses and communities. Based in Seoul, South Korea, with its North America headquarters in West Fargo, North Dakota, Doosan Bobcat is home to world-renowned brands. This includes: Bobcat® compact equipment; Doosan Portable Power products; BOB-CAT Mowers; Ryan and Steiner grounds care equipment; and Geith attachments.

At Doosan Bobcat, our success is powered by our people. Through our winning culture and one global team working together, we deliver the best products and service to our customers – and make the world a better place. Join our team today and start building your career with a worldwide leader.

Doosan is committed to a diverse workforce and is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to sex, age, race, color, religion, creed, citizenship status, national origin, disability, marital status, sexual orientation, gender identity, protected veteran status, or any other status or characteristic protected by law. Individuals with disabilities who require a reasonable accommodation in the application process or who need assistance accessing the information on this website should call 701-241-8700. Doosan is a VEVRAA federal contractor and seeks priority referrals of protected veterans.

Beware of Fraudulent Job Offers and Solicitations

Any legitimate job offer will be preceded by an official selection process.


Nearest Major Market: Fargo