Cypersecurity Supurvisour

Short Description: Activities related to information and/or physical security initiatives to protect the business' systems and infrastructure and to ensure compliance with state laws and regulations. This position leads and manages a team of Information Technology (IT)/Information Security (IS) professionals in a designated area or responsibility within the security umbrella, collaborates with other leadership to align security priorities, plans with key business objectives, and translates the security risk requirements and business constraints into technical control requirements and specifications. This position develops metrics for ongoing performance measurement and reporting.

Primary Responsibilities

• Understanding the information that needs to be protected:
• Determining security measures best suited for the type of information; and
• explaining the security measures taken to employers using non-technical language.
• Protecting sensitive or personal information from unauthorized access or use:
• Identifying potential security risks;
• designing strategies and defensive systems against intruders;
• monitoring systems for unusual activities (e.g. unauthorized access, modification, duplication, or destruction of information);
• running counteractive protocols; and
• reporting incidents.
• Testing security strategies and defenses:
• Attempting to break in to uncover potential weaknesses;
• acting like a hacker to test defensive systems;
• trying to access information without proper credentials;
• trying to breakthrough firewalls and other security applications; and
• writing reports based on test results.
• Developing new defensive systems and protocols:
• Creating new layers of protection;
• updating security systems; and
• developing new counteractive protocols.
• Granting permission and privileges to authorized users.
• Running diagnostics on information changes to check for undetected breaches that may have occurred.
• Analyzing new methods of intrusion by cyber criminals:
• Keeping up-to-date on trends and new procedures in the industry; and
• taking the necessary precautions, updating and fortifying defenses accordingly.

Daily Tasks

• Protecting information from unauthorized access, duplication, modification, or destruction.
• Analyzing security measures taken to protect information.
• Testing for and correcting possible weaknesses or openings.
• Configuring security programs and tools.
• Running vulnerability tests and updating defensive protocols and systems accordingly.
• Granting access and credentials to authorized users.
• Monitoring all access to the information.
• Checking for unregistered changes of information.
• Running defensive protocols and programs when breaches occur.
• Writing regular reports on systems status.

• Bachelor's degree in Information Technology, Information Security, Auditing, or closely related field
• 5 years' experience in IT, IS, systems auditing, or related field