This site uses cookies. To find out more, see our Cookies Policy

Information Security Manager in West Fargo, ND at Doosan Bobcat

Date Posted: 11/28/2018

Job Snapshot

Job Description

Build Your Future with Bobcat and Doosan! We want people with...BIG goals, BOLD dreams and an INNOVATIVE spirit!

Job Information

The ISM's role is to act as an interface between the IT Security and Risk Directors strategic and process-based activities and the work of the technology-focused analysts, engineers and administrators in the PIT and DSIA/E organization.

The ISM must be able to translate the IT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting.

Expertise in leading project teams and developing and managing projects is essential for success in this role. The ISM must be able to prioritize work efforts — balancing operational tasks with longer-term strategic security efforts.

Role & Responsibility

Strategic Support

  • Support / develop the security program and security projects that address identified risks and business security requirements.
  • Manage the process of gathering, analyzing and assessing the current and future threat landscape.
  • Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.

Secruity Liaison

  • Assist resource owners and IT staff in understanding and responding to security audit failures.
  • Provide security communication, awareness and training for audiences, which may range from senior leaders to field staff.
  • Work with various stakeholders to identify information asset owners to classify data and systems as part of a control framework implementation.
  • Work with the Director and IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
  • Provide support and guidance for legal and regulatory compliance efforts, including audit support.

Architecture/Engineering Support

  • Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
  • Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
  • Develop a strong working relationship with server, applications and networking engineering teams.

Operational Support and Project Management

  • Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.
  • Manage and coordinate operational components of incident management, including detection, response and reporting.
  • Work with colleagues to support the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.
  • Manage security projects following industry best practice methodologies (PMP for example), provide reporting to senior stakeholders and PMO accountability board, and provide expert guidance on security matters for other IT projects.

Secruity Awareness, Education and Training

  • Define, develop and deliver information security awareness, education and training to ensure employees / contractors and key business partners are aware of their responsibilities.
  • Champion the SPOC (Security Point of Contact) program, working with the business teams to ensure awareness.

Job Requirement

  • Education Required: Information Technology Bacherlor's Degree or equivalent.
  • Travel Required: <10%
  • Experience Required: 7-10 years
  • Minimum of 8 years of work experience in IT Security or a related field.
  • Preferred certifications: CISSP, CISM & CISA and equivalent.
  • Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (COBIT) frameworks.
  • Experience dealing with 3rd Party suppliers and defining security requirements.
  • Knowledge of modern network security technologies such as network and host based IDS / IPS, vulnerability assessment (incl. OWASP) DDOS, AV, Data Loss Prevention, Cloud Security, SIEM, Security incident response.
  • Good understanding of TCP/IP and associated protocols.
  • Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies.
  • Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans.
  • Strong conceptual thinking and communication skills - the ability to conceptualize complex business and technical requirements into comprehensible models and templates.
  • Ability to work well under minimal supervision.
  • Demonstrated leader with team-oriented interpersonal skills, with the ability to interface  effectively with a broad range of people and roles, including upper management.
  • Strong written and verbal communication skills.
  • High levels of integrity in the conduct of personal and professional affairs.
  • Calmness and clarity of thought under pressure and ability to maintain confidentiality.
  • Ability to maintain the goals and culture of the organization.
  • Understanding of strategic business objectives and the ability to drive results toward those objectives.

The world-renowned brands that make up Doosan Bobcat produce industry-leading compact and heavy construction equipment, attachments, air compressors, lighting systems, generators and articulated dump trucks. Doosan Bobcat is a part of the Doosan Group, which employs 43,000 people in 38 countries worldwide. With people at the core of who we are, we believe the growth of our people will lead to the continued growth and success of our world-class company. Our team of dedicated employees is the backbone that allows us to provide construction equipment solutions that help our customers build the world of tomorrow. Wherever you find us, you’ll hear the sounds of progress, see the results of our people and feel the rhythm of transformation in everything we do.

Doosan is committed to a diverse workforce and is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to sex, age, race, color, religion, creed, citizenship status, national origin, disability, marital status, sexual orientation, gender identity, protected veteran status, or any other status or characteristic protected by law. Individuals with disabilities who require a reasonable accommodation in the application process or who need assistance accessing the information on this website should call 701-476-4263. Doosan is a VEVRAA federal contractor and seeks priority referrals of protected veterans.

Beware of Fraudulent Job Offers and Solicitations

We recently learned that unauthorized individuals and/or groups are communicating false offers of employment with Bobcat Co. (“Bobcat”) via email.    The communications include the Bobcat logo and may appear legitimate.   However, they are fraudulent and are not sent from anyone affiliated with Bobcat.

Please note that Bobcat, Doosan Bobcat North America, and Doosan Portable Power DO NOT charge a fee, request payment, or request personal banking information at any point in the recruitment process.  We DO NOT send unsolicited emails requesting personal data from potential employees.  If you receive a job offer that appears fraudulent, please notify our talent acquisition team and consider contacting your local law enforcement office.

Any legitimate job offer from Bobcat, Doosan Bobcat North America, or Doosan Portable Power will be preceded by an official selection process.

CHECK OUT OUR SIMILAR JOBS

  1. IT Jobs
  2. IT Manager Jobs