Senior Security Manager

JE Dunn Construction
View Business Info
Job Description

Role Summary

The Senior Security Manager supports all areas of IT security as a subject matter expert, guiding cross functional teams including security professionals to maintain a secure environment. This role will be responsible for partnering with IT leadership to develop security strategy, selecting relevant technologies and implementing large scale enterprise-wide security projects. All activities will be performed in support of the strategy, vision and values of JE Dunn.

  • Autonomy & Decision-Making: Makes decisions on non-routine matters, provides recommendations to supervisor, and refers all exceptions to supervisor.
  • Career Path: Security Systems Director

Key Role Responsibilities - Core

  • Leads technical resources for the design and implementation projects using advanced project management methodology and practice
  • Oversees the design and implementation of security solutions for a variety of platforms, including on-premises and cloud (Azure, AWS, GCP, Oracle).
  • Researches and maintains awareness of new security threats and continually evaluates controls for increased effectiveness. Communicates updates to security team
  • Promotes advanced security practices within the IT department and across the organization through collaboration, proactive communication and development of relationships with departmental champions
  • Develops, tracks, updates and presents meaningful metrics on security program effectiveness and business outcomes to various audiences including IT leadership and business leaders
  • Develops policies and procedures in alignment with enterprise security risk and compliance requirements
  • Leads the response to security incidents, conducting remediation and evaluation and managing post-incident analysis
  • Ensures compliance with security frameworks and regulations (NIST CSF, NIST 800-171 & 800-53, CIS, ISO 27001) by managing implementation of new security controls to address gaps in the security program
  • Leads and participates in cross-functional teams (networking, systems, applications, development) to provide security guidance and best practices, ensuring security is embedded in the project life cycle.
  • Acts as security subject matter expert on area of specialization, mentoring other team members
  • Conducts threat modeling and risk assessments for new projects and cloud initiatives, identifying and mitigating potential security risks
  • Oversees the implementation of automated workflows and AI agents to streamline security operations
  • Creates and refines business continuity, disaster recovery and incident response plans to ensure organizational resilience against cyberattacks

Key Role Responsibilities - Additional Core

In addition, this position will be responsible for:

  • Leads large security projects with organization-wide impacts, ensuring alignment and buy-in from various functional areas of the business
  • Ensures the consistent and timely implementation of IT security strategies, leading partnerships with other functional areas of IT to implement defined initiatives
  • Researches the latest innovations in cybersecurity, develops and implements regular training and development opportunities for security team
  • Encourages the evolution of security team skillsets into emerging technologies including AI, maintaining a culture of adaptability
  • Acts as point of escalation for security incidents of a large or complex nature, using situations as available to develop or mentor less experienced team members
  • Assists IT leadership in developing and implementing best practices for security policies, systems and procedures as security subject matter expert
  • Proactively reviews security metrics ensuring relevance and utilization across target audiences. Makes recommendations for improvement or replacement of metrics as needed

Knowledge, Skills & Abilities

  •  
  • Ability to perform work accurately and completely, and in a timely manner
  • Communication skills, verbal and written – Advanced
  • Strong self-motivation; willing to learn and research skill set in line with business objectives
  • Ability to utilize internet resources for research and problem solving
  • Maintains technical writing and documentation discipline
  • Ability to follow-up on inquiries in a timely manner
  • Ability to solve technical issues - Advanced
  • Adapts to change, is open to new ideas, takes on new responsibilities, handles pressure and adjusts plans to meet changing needs
  • Manages difficult or emotional customer situations promptly and efficiently
  • Listening skills
  • Organizational skills
  • Ability to quickly and effectively solve complex problems
  • Ability to deliver quality through attention to detail
  • Ability to work in team and independently
  • Ability to work a flexible schedule – might be on call in the evenings and weekends
  • Ability to build relationships with team members that transcend a project

Education

  •  
  • Bachelor’s degree in information security or related field (Preferred)
  • In lieu of the above requirements, equivalent relevant experience will be considered.

Experience

  •  
  • 10+ years’ experience in information security or information technology operations (Required)
Other Postings
Applications Manager