Manager, Cybersecurity Data and Access Management
December 29, 2021
About the Role
The Manager, Cybersecurity Data and Access Management in the Corporate Information Technology Group - Global Cybersecurity and Privacy Division will be responsible for the design and administration of procedures in the organization that sustain the security of the organization's data and access to its technology and communications systems. Additional duties include assessing the risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them; tracking security violations and identifying trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. This position may lead or execute simulated attacks or security violations to assess the organization's data security measures.
What You'll Do
Provide Management oversight, define and maintain the identity and access management (IAM) program, processes, standards, and guidelines related to data and systems protection. Some of the responsibilities of this individual include:
• Works at the highest level to provide expert advice and counsel to Senior IT Leadership, IT Project teams, and Users of architectural environments that are complex (typically crossing function/location lines) • Serve as lead to define and maintain the architectural frameworks/patterns, processes, standards and guidelines related to systems, business or data architecture
• Define core and supportive technology, data entities, business functions or subject areas that transcend organizational and functional boundaries
• Provide technical and architectural subject matter expertise to the various development teams, including communicating architectural decisions and mentoring other technical staff around the multiple development technologies and choices
• Develops and implements on-prem and cloud-based strategic technology plan and oversees the day to day operations of a team of Information Security (InfoSec) engineers who support FTI's technology stack both on-premise and the cloud-based environments
• Responsible for the functionality, quality, value and timely delivery of products and services within our MS AZURE, Network Protection, Big Data and Endpoint Protection Portfolio that supports the desired InfoSec Cloud capabilities for all lines of business
• Design, plan and implement test strategies to support the core infrastructure in the contingency environment for all critical business applications to ensure business continuity in the event of a significant business interruption or disaster
• Plan or lead projects designed to develop and test new methodologies and systems for recovery of the critical core business processes and the enterprise infrastructure. Create policies and procedures for data center work
• Serves as a leader in the Azure space for InfoSec interfacing with internal and external customers and other parts of InfoSec
• Work with internal and external auditors to verify controls and address gaps accordingly
• Plan, manage, document, and evaluate the performance of subordinate staff. Provision their technical and professional growth through assignments, mentoring, and technical training opportunities
• Oversee the building and delivery of Cloud-based security services internally, while also leveraging third-party Cloud service providers (IaaS, PaaS, SaaS) \Planning and reporting of team activities using project/portfolio management methodology
• Assume backup or alternate responsibilities for other Cybersecurity staff as needed How You'll Grow
• Through working at the highest level of the organization and providing expert advice and counsel to Senior Information Technology Leadership, IT Project teams, and Users, it is expected that the responsibilities and span of functional responsibilities will increase over time
• This position is a direct report to the Head of Global Cybersecurity and is anticipated to be a key member of the Global Cybersecurity Leadership team
Basic Qualifications
• 7+ years overall IT experience, with previous experience in various server, network and database administration roles, and previous management/personnel leadership roles
• 5+ years' experience in Information/Cyber Security, IT Audit/Security Assessment/Certification or Accreditation and planning, as well as Data Privacy Risk Assessment and/or Business Continuity Planning experience PREFERRED SKILLS
• This individual will be expected to possess a deep understanding of both Public and Private Cloud technologies, particularly MS Azure
• Cloud Services experience; solution delivery expertise, migration of applications to the cloud, automation through various tools both MS Azure native and third-party
• Proven expertise in building a defense in depth infrastructure security architecture that includes security controls across the technology stack
• Strong knowledge of networking, IAM, enterprise logging, SIEM, API Management, containerization, and security assessment tools/methodologies
• Exceptional experience influencing collaborating and negotiating positive outcomes across stakeholders in a highly matrixed organization
• Proven Experience Developing Security and Data Protection programs
• Strong understanding of information security principles, architecture, and methodologies (including risk assessment)
• Experience with Enterprise Architecture frameworks such as TOGAF, DoDAF, FEAF, etc.
Our BenefitsApart from the well-structured career path and excellent team environment, our employees enjoy a variety of perks and benefits. Our benefits include, but are not limited to:
About FTI Consulting
What makes us unique? With more than 5,000 employees located in offices in every corner of the globe, we are the firm our clients call when their most important issues are at stake. Regardless of what level you are, you will have the opportunity to work alongside and learn from top experts in your field on high-profile engagements that impact history. Our culture is collaborative, and we value diversity, recognition, development and making a difference in our communities.
FTI Consulting is publicly traded on the New York Stock Exchange and has been recognized as a Best Firm to Work For by Consulting magazine and one of America's Best Management Consulting Firms by Forbes. For more information, visit www.fticonsulting.com and connect with us on Twitter (@FTIConsulting), Facebook and LinkedIn.
FTI Consulting is an equal opportunity employer and does not discriminate on the basis of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation.
#LI-MG1
The Manager, Cybersecurity Data and Access Management in the Corporate Information Technology Group - Global Cybersecurity and Privacy Division will be responsible for the design and administration of procedures in the organization that sustain the security of the organization's data and access to its technology and communications systems. Additional duties include assessing the risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them; tracking security violations and identifying trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. This position may lead or execute simulated attacks or security violations to assess the organization's data security measures.
What You'll Do
Provide Management oversight, define and maintain the identity and access management (IAM) program, processes, standards, and guidelines related to data and systems protection. Some of the responsibilities of this individual include:
• Works at the highest level to provide expert advice and counsel to Senior IT Leadership, IT Project teams, and Users of architectural environments that are complex (typically crossing function/location lines) • Serve as lead to define and maintain the architectural frameworks/patterns, processes, standards and guidelines related to systems, business or data architecture
• Define core and supportive technology, data entities, business functions or subject areas that transcend organizational and functional boundaries
• Provide technical and architectural subject matter expertise to the various development teams, including communicating architectural decisions and mentoring other technical staff around the multiple development technologies and choices
• Develops and implements on-prem and cloud-based strategic technology plan and oversees the day to day operations of a team of Information Security (InfoSec) engineers who support FTI's technology stack both on-premise and the cloud-based environments
• Responsible for the functionality, quality, value and timely delivery of products and services within our MS AZURE, Network Protection, Big Data and Endpoint Protection Portfolio that supports the desired InfoSec Cloud capabilities for all lines of business
• Design, plan and implement test strategies to support the core infrastructure in the contingency environment for all critical business applications to ensure business continuity in the event of a significant business interruption or disaster
• Plan or lead projects designed to develop and test new methodologies and systems for recovery of the critical core business processes and the enterprise infrastructure. Create policies and procedures for data center work
• Serves as a leader in the Azure space for InfoSec interfacing with internal and external customers and other parts of InfoSec
• Work with internal and external auditors to verify controls and address gaps accordingly
• Plan, manage, document, and evaluate the performance of subordinate staff. Provision their technical and professional growth through assignments, mentoring, and technical training opportunities
• Oversee the building and delivery of Cloud-based security services internally, while also leveraging third-party Cloud service providers (IaaS, PaaS, SaaS) \Planning and reporting of team activities using project/portfolio management methodology
• Assume backup or alternate responsibilities for other Cybersecurity staff as needed How You'll Grow
• Through working at the highest level of the organization and providing expert advice and counsel to Senior Information Technology Leadership, IT Project teams, and Users, it is expected that the responsibilities and span of functional responsibilities will increase over time
• This position is a direct report to the Head of Global Cybersecurity and is anticipated to be a key member of the Global Cybersecurity Leadership team
Basic Qualifications
• 7+ years overall IT experience, with previous experience in various server, network and database administration roles, and previous management/personnel leadership roles
• 5+ years' experience in Information/Cyber Security, IT Audit/Security Assessment/Certification or Accreditation and planning, as well as Data Privacy Risk Assessment and/or Business Continuity Planning experience PREFERRED SKILLS
• This individual will be expected to possess a deep understanding of both Public and Private Cloud technologies, particularly MS Azure
• Cloud Services experience; solution delivery expertise, migration of applications to the cloud, automation through various tools both MS Azure native and third-party
• Proven expertise in building a defense in depth infrastructure security architecture that includes security controls across the technology stack
• Strong knowledge of networking, IAM, enterprise logging, SIEM, API Management, containerization, and security assessment tools/methodologies
• Exceptional experience influencing collaborating and negotiating positive outcomes across stakeholders in a highly matrixed organization
• Proven Experience Developing Security and Data Protection programs
• Strong understanding of information security principles, architecture, and methodologies (including risk assessment)
• Experience with Enterprise Architecture frameworks such as TOGAF, DoDAF, FEAF, etc.
Our BenefitsApart from the well-structured career path and excellent team environment, our employees enjoy a variety of perks and benefits. Our benefits include, but are not limited to:
- Competitive salary and bonus plans
- Generous paid holidays, time off and parental leave
- Full package of benefits plans
- Company matched 401K
- Annual paid volunteer hours
- Corporate matching for charitable donations
- Potential for flexible working arrangements
- Free snacks and drinks
- Upscale offices close to public transportation
- Pet insurance
About FTI Consulting
What makes us unique? With more than 5,000 employees located in offices in every corner of the globe, we are the firm our clients call when their most important issues are at stake. Regardless of what level you are, you will have the opportunity to work alongside and learn from top experts in your field on high-profile engagements that impact history. Our culture is collaborative, and we value diversity, recognition, development and making a difference in our communities.
FTI Consulting is publicly traded on the New York Stock Exchange and has been recognized as a Best Firm to Work For by Consulting magazine and one of America's Best Management Consulting Firms by Forbes. For more information, visit www.fticonsulting.com and connect with us on Twitter (@FTIConsulting), Facebook and LinkedIn.
FTI Consulting is an equal opportunity employer and does not discriminate on the basis of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation.
#LI-MG1