Cyber Defense Specialist

3D Systems Rock Hill, SC

3D Systems, a leadingglobal provider of 3D printing solutions, is seeking a Cyber DefenseSpecialist. The individual will beresponsible for 3D Systems Information Security application systems and theprotection of 3D Data and Systems. TheSpecialist will own responsibility for one or more information securityplatforms such as Cyber Defense, Governance, and Risk, Compliance, or DisasterRecovery. The Specialist will be part ofthe Incident Response Team and will own the on-call schedule and assignments ofsecurity engineers, analysts, and interns, and will be subject to on-call andafter-hours duties on a rotating basis with other Specialists. Influences and guides 3D Systems personnel onemerging information security threats and technologies and ways to mitigatethose threats. The Specialist will ownsecurity solutions that meet the needs of the business as well as the over-allsecurity program based on the risk.


* Influence and settactical security vision and direction, collaborate on development strategiesand goals for direct reports and those of other Specialists.

* Design, developand implement documents and procedures that support and enforce securitystandards, policies and procedures to raise the security posture while loweringthe risk.

* Define andunderstand the current environment and the ability to detect critical securityvulnerabilities and risks, then provide feedback on timely remediation ofsecurity issues or incidents to management.

* Ensure compliancewith all external regulatory compliance programs corporate wide.

* Design, andimplement information security documentation standards for security engineersand analyst to follow.

* Ensure securitypolicies and procedures are adhered to and followed by security personnel.

* Maintain relevantsecurity knowledge by attending security events and conferences.

* Review andvalidate penetration test findings for validity.

* Validateimplementation of recommended security configuration changes identified bypenetration test findings.

* Establishguidelines for security personnel to follow when interacting with businesspartners.

* Provide feedbackand guidance to Security Engineers, Analyst, and Interns as needed.

* Effectivelycommunicate security risks to 3D Associates, Stakeholders, and Management.

* Experiencemanagement and ownership of security tools and applications in a corporateenvironment.

* Recommend andinfluence security vendor selection and business requirements for security toolselection.

"This document represents the major duties, responsibilities, andauthorities of this job, and is not intended to be a complete list of all tasksand functions. It should be understood,therefore, that incumbents may be asked to perform job-related duties beyondthose explicitly described."


Education and Training

* Bachelor's degree in Computer Science or related field, or equivalent combination of industry related professional experience and education.

* Master(s) in information security or related field preferred.


* Experience with NIST, SOX, HIPAA or other information security related frameworks or regulations.

* Previous management of a Security Application or department for 2 years or greater.

Knowledge, Skills & Abilities

* CISSP, CISM, CCSP or other information security related certification(s).

* Ability to convey technical information clearly too all groups and individuals concisely, and clearly verbally and in writing to individuals with limited technical expertise.

* Experience in information security for a manufacturing environment for international company highly desirable preferred.


Thework environment characteristics and physical demands are representative ofthose an employee encounters while performing the essential functions of thisjob. Reasonable accommodations may be made to enable individuals withdisabilities to perform the essential functions.


Itis the policy of 3D Systems to ensure a safe, healthy workplace for all itsemployees. All employees are expectedand encouraged to participate in safety and health program activities includingreporting hazards, unsafe work practices and accidents immediately to theirsupervisors or Human Resources; wearing required personal protective equipment;and participating and supporting safety activities.


All employees are expected tounderstand and adhere to the standards defined in the Company's Code of Conductand Corporate Culture Guidelines.