IT Manager - Security

Position Summary

Reporting to the Director, IT Operations and Security, the IT Manager - Security will be responsible for IT security across all locations by overseeing the operations of the enterprise's security solutions and establishing an enterprise security stance through policy, architecture and training processes. This individual will have a broad IT knowledge across multiple technology disciplines, the security vulnerabilities associated with each technology area/discipline and best practices to detect and prevent threats to IT security. The role requires the individual to design threat detection and prevention systems, design response plans, design vulnerability testing and manage the deployment and continued operation of these designs plus establishing and enforcing security policies and procedures.

Essential Duties and Tasks

To perform this job successfully, an individual must be able to perform each essential job function satisfactorily. Reasonable accommodations may be made, upon request, to enable individuals with disabilities to perform the essential functions.

* Develop, implement and monitor a comprehensive information security program to protect the organization

* Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action

* Develop, implement, and maintain security assessment processes & tools to review the security controls in on premise and cloud-based applications

* Leads or assists in the preparation and implementation of necessary information security policies, standards, procedures and guidelines. Including but not limited to: Conducting annual risk assessment with a 3rd party vendor, conduct bi-annual audits of active directory and SQL user structures, and cooperates with IT on disaster recovery testing.

* Evaluate the impact of cloud applications on the overall Enterprise Architecture as it relates to information security

* Understand the impact to security and IP Protection for mobile platforms and networks and make recommendations for maintaining a secure mobile environment

* Work to manage & contain information security incidents and events to protect company IT assets, Intellectual Property, and company's reputation

* Work closely with Systems Analyst to manage the vulnerability assessment & management and patching process

* Conduct cyber security tabletop exercises to improve response capabilities

* Provide regular reporting on the current status of information security program to management

* Continually stays abreast of security trends, threats and prevention technologies and practices

Qualifications and Experience

* Minimum of 6 years of experience in a combination of information security, risk management, security review, and incident response

* Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar certification

* Proven track record and experience in executing information security & intellectual protection programs in a global environment

* Ability to assess, validate and incorporate new tools, practices, strategies and process to gain efficiencies in the areas of cyber security & intellectual property protection

* Experience with the Windows Server Environment is required

* Ability to communicate effectively with all levels of the organization and cross culturally

* Must be capable of understanding project and business requirements; and how these requirements apply to complex enterprise systems and interfaces

* High degree of initiative and independent judgment; perform duties and makes decisions and recommendations under limited supervision, applying a broad knowledge of principles, practices and procedures

* Proven leadership skills to lead the team and business through change

* Must be able to travel (up to 20%.)

* Bachelor's Degree in Information Technologies, or equivalent combination of experience, relevant IT certifications and credentials

Key Competencies

* Excellent time management, planning and organizational skills

* Ability to manage multiple projects and assignments simultaneously

* Adaptable, innovative, and detail oriented

* Excellent verbal, written and presentation skills

* Self-starter with Positive Attitude

Work Environment

Work primarily in a climate controlled indoor environment with minimal safety/health hazard potential. Hearing protection, safety shoes and vision protection required.

This role operates in a professional office environment that requires some exposure to a manufacturing environment. Employee is rarely exposed to non-toxic/nuisance smells from chemicals, airborne dust, moving mechanical parts, high noise levels and hot/humid environmental conditions in the manufacturing area during extremely hot summer months.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. Employee is regularly required to stand; walk; use hands/fingers to type, hold, handle, or feel; and reach with hands and arms. The employee is regularly required to talk or hear. The employee must occasionally lift and/or move up to 50 pounds.

Other Duties

Always take ownership and be accountable for your actions. This job description is a tool for you to follow while at ProAmpac. Other job duties may be assigned to you, this outline is not to be considered a detailed description and you may have other duties/projects assigned to meet business needs. Good and reliable attendance, positive attitude and at or above job specific metrics and/or goals will reflect on your annual review. Always take ownership of your job and team.

EEO Statement

ProAmpac provides equal employment opportunity to all individuals regardless of their race, color, creed, religion, gender, age, sexual orientation, national origin, disability, veteran status, or any other classification protected by state, federal, or local law. Further, the company takes affirmative action to ensure that applicants are employed and employees are treated during employment without regard to any of these characteristics. Discrimination of any type will not be tolerated.

EEO - M/F/Vets/Disability