compensation: Commensurate with experience. employment type: full-time
QR Code Link to This Post
As our manager of IT security, you will be a key contributor in leveraging our security technologies and enhancing processes and procedures in collaboration with our strategic security and infrastructure partner. You will be responsible for discovering, evaluating, and delivering security technologies to protect all sensitive information, as well as implementing a robust set of security controls. Our ideal candidate is a technologist who will provide technical knowledge and analysis regarding applications, operating systems, vendor risk management, incident response, security awareness, and training.
Establishing and maintaining a strategically sound, company-wide information and cybersecurity program to ensure that IT assets and information are adequately protected; overseeing and coordinating all cybersecurity efforts and ensuring consistency with the regulatory and compliance requirements that govern cybersecurity
Developing and managing information systems for cybersecurity, including disaster recovery, database protection, and software implementation and development
Ensuring that all applications and data are functional and secure
Updating and delivering information security standards, best practices, architecture, and systems (storage, networking, endpoints, e-mail, SAS systems, cloud hosting, etc.) to ensure information systems security across the enterprise
Performing vulnerability scanning and penetration testing on internal systems (firewalls, servers, endpoints, etc.)
Mitigating vulnerabilities (viruses, Trojans, malware, etc.) and strengthening the firm as required
Overseeing and managing audit-finding remediation, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, tracking progress, and providing status updates
Monitoring emerging technology trends and conducting proof-of-concept experiments with new and emerging technology
Working with team members and strategic partners to develop advanced detection and monitoring capabilities for incident management, response planning, and reaction to events
Playing a key role in our deployment of Azure and Office 365
Monitoring compliance with the organization’s information security policies and procedures among employees, contractors, and other third parties
Bachelor’s degree in computer science, information technology, or related IT field—or equivalent combination of relevant experience and skills
5 years of related experience in an IT security role, ideally demonstrating a combination of hands-on and managerial responsibilities covering security policies, tools, and operations
Well versed in compliance and security standards and guidelines, including SOX, NIST, and CIS
Extensive hands-on knowledge of security controls and technologies, including SIEM, DLP, IPS, and firewalls
Experience working with security vendors and strategic partners
Experience creating and updating relevant security policies, controls, and risk assessment documentation
Experience working with security software, documentation, software testing, software maintenance, and the software development process a must
Experience managing security programs in a highly regulated environment
Up-to-date knowledge of tools and best practices in advanced, persistent threats; tools, techniques, and procedures of attackers; and related forensics and incident response
Strong analytical, prioritizing, problem-solving, project management (from conception to completion), and planning skills
Strong interpersonal, presentation, and communication skills—both written and verbal
Demonstrated collaborative skills and ability to work well in a fast-paced, dynamic environment
Self-motivated with critical attention to detail, deadlines, and reporting
Quick and motivated learner; enthusiastic about continuing to develop cybersecurity skills
Have we piqued your curiosity? Can you see yourself thriving in this opportunity? Let's introduce ourselves.
About Commonwealth--and Our Anything but Common® Culture
Commonwealth Financial Network® is the largest privately held Registered Investment Adviser-independent broker/dealer in the U.S., with offices in Waltham, Massachusetts, and San Diego, California. Since 1979, we've been delivering indispensable service to independent financial professionals so they, in turn, can put their clients first. Our technology, research, resources, and support--plus a variety of affiliation models--deliver what today's independent advisors need to thrive.
That being said, we are a financial services company with a unique mission--one that encompasses purpose, vision, and core values in equal measure. Staying true to these guiding principles is the reason we are recognized so often and by so many for the quality of life we enjoy here. We believe it directly translates to a better experience for everyone: employees, advisors, clients, and our communities.
Creating a supportive culture where everyone can thrive is a mission we take seriously. From professional development to comprehensive benefits, grassroots leadership opportunities, generous bonus and stock option incentive plans, opportunities to unwind and connect, and so much more, Commonwealth is not just a great place to work--it's a place that, for many, feels like home.
Commonwealth Financial Network® is an equal opportunity employer that is committed to a diverse workforce.
Principals only. Recruiters, please don't contact this job poster.
do NOT contact us with unsolicited services or offers