Manager, IT Security - Richmond, Virginia (VA) - LL Flooring

  • 28 Oct 2021 7:59 PM
    Message # 12081106
    James Walters (Administrator)

    Manager, IT Security - Richmond, Virginia (VA) - LL Flooring

    https://us61.dayforcehcm.com/CandidatePortal/en-US/lls/Posting/View/41678

    Richmond, VA, USA Req #11575

    Posted: Saturday, October 9, 2021

    Are you looking for a FUN and EXCITING new opportunity at a company where diverse and talented associates turn jobs into careers? If yes, then LL Flooring is the perfect fit for you!

    LL Flooring has been serving the nation’s hard surface flooring needs for over 25 years with over 420 locations nationwide and we are still growing! We offer an extensive benefits package that includes a generous amount of paid time off, paid holidays, a great 401k match, and low premium medical coverage. If you have the desire to grow and work with industry leading professionals, this is the place for you!

    The Manager will Identify and lead security initiatives for our enterprise and be the primary liaison with our Auditors. Supervise security Analyst staff and take a hands-on approach for the planning, budgeting, coordination and implementation of the organization’s Information Technology and Data security needs. Develop and carry out enterprise security strategy and best practices. Update policies and procedures in adherence with industry best security practices and regulatory compliance including PCI compliance. Take proactive measures to keep the organization informed and safe.

    Job Duties and Responsibilities:

    • Proactively recommend and drive security enhancements to management
    • Establish, track and present key performance metrics to demonstrate continuous improvement
    • Integrate with peer groups and industry experts to benchmark our programs and results
    • Staff monitoring, resource planning, oversight, and administrative tasks
    • Oversee and recommend strategies to respond to and recover from a security breach
    • Educate the workforce on information security through training, newsletters, etc.
    • Select, implement, and manage software and services to protect organizations’ sensitive information
    • Participate in and manage portions of projects in coordination with Project Managers
    • Work closely with application development teams to ensure secure coding standards/practices
    • Participate and evangelize a DevSecOps methodology
    • Test security plans, products, and control techniques
    • Coordinate and monitor vulnerability scans, application penetration testing, risk assessments, and tabletop exercises
    • Work collaboratively with other technical teams to identify and remediate system and application vulnerabilities.
    • Liaison with Internal Audit and other consultants as required to perform quarterly and annual audits/reviews
    • Engage and participate in industry peer groups
    • Keep abreast of industry trends and apply to LL Flooring
    • Perform vendor review to ensure compliance with industry and company security standards
    • Perform other job-related duties as assigned

    Additional Requirements:

    • Analytical skills
    • Skilled in Project and Resource Management
    • Troubleshooting Proficiency
    • Working knowledge of PAM, SIEM, IAM, CASB, SOAR, DLP, SSO, WAF and Email Threat Management Technology
    • Risk Management skills
    • Working knowledge of one or more public cloud and information technology security in a hybrid cloud environment
    • Methodical and meticulous work ethic
    • Proficient with industry wide security standards
    • Proficient with network and application security tools and best practices
    • Ability to process large amounts of information
    • Excellent verbal and written communication at all levels of the organization
    • Ability to lead an investigation and perform forensic analysis
    • Aggressively pursue risk mitigation strategies
    • Demonstrate cross functional team leadership

    POSITION QUALIFICATIONS

    Education:

    • Bachelor’s Degree and/or training or equivalent combination of education and experience

    Related Experience, Qualifications and/or Certifications:

    • Advanced knowledge of NIST Cybersecurity framework, NIST 800-53 & PCI-DSS
    • 3+ years supervisory experience leading a security team
    • CISSP preferred

    Computer Skills / Special Equipment Knowledge:

    • Advanced level of expertise with Microsoft
    • Experience with Database Management.


Copyright 2018, International Information Systems Security Certification Consortium, Inc. (“(ISC)²), in website format and trade dress only. All Rights Reserved. (ISC)², CISSP, SSCP, CAP, ISSAP, ISSEP, ISSMP, CSSLP, and CBK are registered certification, service, and trademarks of (ISC)². Disclaimer: (ISC)²” does not own, operate, or moderate this website. All content of this site, exclusive of licensed trademarks or copyright, is the property of the designated (ISC)² Chapter organization, which is not owned, managed, or controlled by (ISC)² and operates independent of (ISC)².  

(ISC)2RVA is a 501(c)3 nonprofit organization.  EIN: 83-4655968

P.O. Box 2566, Glen Allen, VA 23058-2566

Powered by Wild Apricot Membership Software