IT Security Manager

SUMMARY:

The IT Security Manager is responsible for developing, managing, and maintaining all aspects of the company’s cybersecurity strategy.  This includes protections for data and processes associated with industry regulations and protections such as but not limited to: PCI DSS, PII, HIPAA, GDPR, CCPA and Jurisdictional Gaming Regulations/Gaming Control Board Requirements.  The IT Security Manager works directly with the Director, IT Engineering & Operations to build and refine strategies to protect the organization’s data, infrastructure, and employees against cyber threats and targeted attacks, throughout a multi-state, multi-property environment.  The IT Security Manager will continually identify and monitor key risk factors and report regularly to the Director, IT Engineering & Operations on the effectiveness of the company’s cybersecurity program.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Defines and monitors Key Performance Indicators (KPIs) and uses the KPI information to develop baselines and trends related to the effectiveness of the company’s cybersecurity program.
• Evaluates the effectiveness of the cybersecurity tools used by the company and makes recommendations on adding/changing/upgrading to keep the cybersecurity defenses current and effective.
• Assumes a leadership position defining the company’s cybersecurity strategy.
• Safeguards the availability, continuity, and security of the company’s data assets and infrastructure.
• Schedules, procures, and acts as the primary liaison for all IT Security-related audits, penetration tests, and security assessments.
• Performs regular vulnerability scanning; identifies, classifies, and research reported vulnerabilities, develops detailed and actionable remediation plans, and works with the technical teams to ensure the issues are remediated.
• Acts as the primary point of contact between the company and the SIEM provider; responds to, evaluates, and escalates (as necessary) when threats are reported.
• Develops and maintains appropriate documentation, including but not limited to: Policies, Standard Operating Procedures (SOPs), Configuration Management, and Knowledge Base (KB) articles related to but not limited to: all aspects of the company’s cybersecurity program, strategies, implemented cybersecurity products, network diagrams, 3^rd party integrations and solutions present within the environment, risk assessment and mitigation, incident response and recovery, and security awareness and training.
• Assists fellow IT staff in understanding and using cybersecurity-related technologies; conducts IT staff cybersecurity technology presentations and training as required or upon request.
• Assumes a role as an approving member of the IT Change Advisory Board (CAB); responsible for ensuring changes meet the current cybersecurity requirements of the company.
• Defines and maintains a strategy for sustaining reliable and actionable knowledge and awareness around both current and emerging IT Security vulnerabilities, exploits, threats, risks to the organization, and secure technologies.
• Defines and maintains a strategy to regularly evaluate new cybersecurity technologies and methodologies which provide a more effective and/or efficient method to keep the company’s data and infrastructure safe.
• Provides guidance, direction, and assistance to operations teams in the secure implementation of new technologies, upgrades, or security enhancements by being the company’s cybersecurity Subject Matter Expert (SME).
• Analyzes current and emerging threats and vulnerabilities; reports to the IT and Executive stakeholders quarterly on the state of the company’s cybersecurity program and if/where improvements are necessary.
• Monitors the company’s infrastructure and in-place cybersecurity tools for critical data mishandling; defines and maintains policies and procedures to prevent data loss; manages and coordinates response to any data loss incident.
• Demonstrates a high level of analytical and problem-solving skills/activities relying on scientific methods to develop logical and repeatable problem-solving processes as well as efficient and documented defect/issue resolution.
• Must be able to work in a 24X7 environment and be the on-call representative for IT Security.
• Performs other duties as may be assigned.

QUALIFICATIONS:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.  The requirements listed below are representative of the knowledge, skill and/or ability required.  Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions of this job.

• Minimum 21 years of age
• Must obtain a Gaming registration
• Quick, accurate, able to handle several tasks at once, and effectively perform under pressure
• Excellent oral and written communication skills
• Must be certified by an agency whose certification standards are equivalent to or greater than those used by the International Association of Privacy Professionals

EDUCATION and/or EXPERIENCE:

• Degree in Computer Science, Information Assurance, Cybersecurity, or equivalent experience in related field(s)
• Minimum 10 years of demonstrated significant experience and knowledge in Information Technology (IT) with a minimum of 5 years specializing in/focused on Cybersecurity
• Minimum 5 years of significant knowledge and experience in all the following areas as they relate to a company’s cybersecurity program: PCI DSS, HIPAA, ITIL, Cybersecurity Standards and Frameworks (i.e., NIST, ISO, CIS, SOC), IT Change Control, Security Awareness, Risk Management, Audits, Cyber Defense, Cyber Tools and Operation, Threat Analysis, Patch Management, Vulnerability Management and Mitigation, Penetration Testing, Assessments, Intrusion Detection, Incident Response, and Device/Application Hardening Techniques
• Minimum 5 years of combined cybersecurity experience in all the following areas: Information Security Management, Risk Management, Compliance and Regulatory Requirements, Security Architecture and Design, Secure System Configuration and Implementation, Incident Response and Management, Security Operations, Vulnerability Management/Classification/Remediation, Identity and Access Management (IAM), Security Awareness and Training, Emerging Technologies and Threats, Vendor and Third-Party Risk Management, Business Continuity, Disaster Recovery, Critical Data Protection, Security Analysis, Data Forensics, Physical and Virtual Security Assessment, and Secure Network Engineering

• Minimum 5 years of combined technical experience with hands-on use and administration of all the following technologies/tools: Windows Servers and Workstations, Firewalls, Web Proxies/Filtering Engines, SIEMs, Endpoint Protection/EDR, IDS/IPS, Vulnerability Scanners, Vendor Access Management, Patch Management, XDR/MDR/NDR, VPNs, IPSEC, Email Security, Data Loss Prevention (DLP), Virtualization Hypervisors
• Minimum 5 years of experience in and fundamental understanding of the following: Active Directory (AD), DNS, DHCP, IP Addressing & Subnet Masks, TCP/UDP, HTTP/HTTPS, SSL/TLS, SSH, VPN, LDAP, SMTP, SNMP, NTP, AAA (RADIUS and/or TACACS ), IDS/IPS, Cryptography (Encryption Algorithms and Hash Algorithms)
• Experience managing multiple projects with competing priorities
• Minimum 3 years of experience with the following vendor-specific technologies/tools/applications: Tenable Nessus
• Experience with the following vendor-specific technologies/hardware/tools/applications/suite of products is a plus but not required: Forcepoint, Cylance, CrowdStrike, Sophos, Vectra, Darktrace, ManageEngine, Fortinet, Cisco, Cisco Meraki, Dell, VMware, Nutanix, Citrix, AWS, Azure, Microsoft 365, Linux distros (Red Hat Enterprise, CentOS, Ubuntu)

CERTIFICATES, LICENSES, REGISTRATIONS:

• CISSP, CEH, CISM, CISA, CompTIA Security , GSEC, CCSP, CIPP, OSCP, GCIH, CISMS, PCIP, Nevada Gaming License/Registration, and other IT and Cybersecurity certifications are a plus

LANGUAGE SKILLS:

• Must have proficient communication skills in English, both verbally and in written form, including electronic communication, including the ability to articulate ideas clearly and effectively, as well as to convey information accurately through written documents, emails, and other electronic means.

MATHEMATICAL SKILLS:

• Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals.

DISCLAIMER:

This job posting is intended to describe the general nature of this position.  It is not intended to be an exhaustive list of all responsibilities, duties and skills required. Employee benefits may vary by location, position, length of service and employment status. Final candidates will be required to complete a drug test and background check.  Many positions will require a state gaming license. Affinity Gaming is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, national origin, gender, age, religion, disability, sexual orientation, veteran status, or marital status. 

#ZR