We have a direct hire position open for a Manager of Cyber Security - Vulnerability and Operations.

Hybrid in Irvine, CA

As the Manager of Cybersecurity (Vulnerability and Application Security), you will play a key role in ensuring the security and integrity of our digital assets and IT systems. You will lead a team of cybersecurity professionals, collaborating with cross-functional teams to assess, remediate, and prevent security vulnerabilities in our applications and infrastructure. Additionally, you will play a crucial part in monitoring for and responding to security incidents, coordinating with relevant teams to ensure swift resolution. Your practical experience and expertise will be essential in shaping and executing the overall cybersecurity strategy while staying informed about the latest threats, industry best practices, and emerging technologies

Experience required:

• Industry recognized security certifications; CISSP: Certified Information Systems Security Professional, CISM: Certified Information Security Manager, GIAC: SANS Global Information Assurance Certification, vendor certifications such as Azure Security Engineer (AZ500), etc.
• 13 years’ experience in an Information Technology role, with 8 years specific to an Information or Cybersecurity role that include expertise in design, development, and deployment of complex highly available, and secure, integration solutions.

Specialized Skills required:

Expert level experience/understanding in as many of the following Security concepts and technologies as possible:

• Architecture and Design
• Web Application Development Experience
• Web Application Penetration Testing Experience
• Container Orchestration
• Understanding of DevSecOps Tooling and Workflows
• Security Testing/Code Scanning Experience (DAST/SAST/RASP/IAST)
• Continuous Integration and Deployment (CI/CD) Experience
• Modern Operating Systems
• Database Systems
• Source Code Repositories
• SSDLC
• AWS Cloud Infrastructure
• Azure Cloud Infrastructure
• Containerization Platforms
• Git
• Web Application Firewall
• Software Development
• Proficient with Programming/Scripting
• Cloud Technology Platforms, IaaS, PaaS, SaaS
• Network Intrusion Prevention/Detection (IPS/IDS)
• Security Information and Event Management (SIEM)
• Virtual Private Networks; SSL, IPSec and Site-to-Site
• Public Key Infrastructure (PKI)
• Network Access Controls (NAC)
• Next-Gen enterprise class firewalls
• Encryption technologies
• Vulnerability scanning tools
• Application scanning tools
• Outstanding interpersonal skills, effective communication with internal and external personnel of all levels.
• Extensive ability to estimate, plan, lead and execute complex technical projects while working independently and/or in a team.
• Strong technical expertise in cybersecurity principles, tools, and methodologies.
• Solid understanding of security operations, incident response, and threat intelligence.
• Familiarity with industry-leading security frameworks and standards.