OverviewnnThe Cybersecurity Director is responsible for leading a team to implement, maintain, monitor and manage secure solutions. The director will be responsible for firewall management governance, cybersecurity engineering and architecture. The director delivers these solutions in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, the director is responsible for recommending modifications and enhancements to ensure the organization is evolving with the threat landscape. The director role is responsible for architecting, implementing, and advising a secure cloud infrastructure supporting business needs. The position will architect secure infrastructure and applications that align with business and cybersecurity strategies to support a fast-paced environment. This role will support the progressive needs of the business and provide timely, secure and cost-efficient solutions that elevate the company’s cloud security posture.nnThe role requires technical knowledge of cloud computing architecture, security principles and cybersecurity best practices. This role must be proficient in cybersecurity and systems administration across a wide variety of infrastructure types (SaaS, IaaS, PaaS). Additionally, demonstrated experience with AWS, Microsoft Azure, Oracle, Google Cloud and other cloud solutions is preferred.nnThe director is expected to help execute the corporate security strategy with the CISO, Deputy CISO, security leadership and other senior security staffers and technologists. Recipients of the network implementations and management include IT infrastructure, application development, security operations, security audit and end users. With an emphasis on securing systems, applications, third-party connections, service providers and ancillary systems, the security engineer is responsible for securing business-to-business initiatives, third-party relationships, outsourced solutions, and vendors. Considered a highly knowledgeable individual, the security engineer is expected to implement, monitor, and manage secure solutions that address modern day issues.nnEssential Functions:nnManage a team of security operators/responders and interact with cybersecurity leadership and business stakeholders.nnImplement a cross-functional team working closely with cybersecurity, IT and developers.nnHandle day-to-day leadership of implementation, monitoring and operational support of hardware, managed solutions and service provider relationships.nnSupport cloud security architecture for SaaS, PaaS and IaaS.nnRecommend and implement cloud security tools and controls.nnUse cloud security tools for asset discovery, cloud workload protection platform (CWPP), control plane configuration and cloud security posture management (CSPM).nnDevelop, maintain and enforce cloud security policies and procedures, as well as best practices for following standards such as FedRAMP, Cloud Security Alliance, SOC 1/2/3, CIS and NIST SP 800 series.nnCommunicate the state of cloud security posture to cybersecurity leaders, stakeholders, IT and developers.nnStay up to date with cybersecurity threats, risks and vulnerabilities with potential impact to services.nnCollaborate with IT and cybersecurity leadership to develop practices to reduce attack surface, as well as countermeasures to impede internal threats and external attackers.nnDefine key performance indicators, objectives and key results, and metrics to illustrate efficacy with cloud infrastructure and applications.nnActively participate and lead security team meetings that facilitate secure network design and execute to the guidance on the network infrastructure.nnEngage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, deliver projects on time, within budget and in accordance with service level agreements (SLAs).nnAssist with incident response and system stability issues as they occur. This may include involvement outside of regular work hours, and responsiveness is expected.nnWork in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members.nnRespond to and handle service and escalation tickets within SLA expectations.nnParticipate regularly in change project and change management meetings.nnResearch, validate and deploy solutions meeting security and business needs.nnFocus on driving security efficiencies, enabling security team members to work on more advanced tasks.nnConduct performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.nnPerform other duties as assigned.nnRequired Qualifications:nnEducation:nnBachelor’s degree preferred in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field.nnExperience:nnAt least 10 years’ experience in IT and security operationsnn5 years leading a technical cybersecurity teamnn3 years cloud experiencennLicenses:nnPreferable, but not required: CISSP, CISM, CRISC, CISA, GCIH, GCFA, GCFEnnPreferred Qualifications:nnEducation:nnBachelor’s degree preferred in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field.nnExperience:nnAt least 10 years’ experience in IT and security operationsnn5 years leading a technical cybersecurity teamnn3 years cloud experiencennOther:nnDemonstrated experience as a team lead, managing people, as well as technology.nnFunctional use with cloud tools (CWPP, CSPM, cloud-native application protection platform) and automation (Chef, Puppet, Salt, Ansible).nnProficient in one or more: Terraform, Kafka, Kubernetes, scripting (Python, JavaScript, Bash).nnProven use with zero trust network access, encryption, web application firewalls, data protection, vulnerability management, API security, IaC.nnAbility to influence technical team and business units and collaborate to reduce attack surface.nnKnowledge in one or more: NIST 800-144, CIS, CSA-CCM, ISO (27040, 27017, 27001).nnCapacity to comprehend complex technical infrastructure, managed services and third-party dependencies.nnApplicable knowledgeable as needed about FISMA, GDPR, PCI, CCPA, HIPAA, GLBA, Regulation P, NYDFS, etc.nnStrong written and oral communication skills across varying levels of the organization.nnLicenses:nnPreferable, but not required: CISSP, CISM, CRISC, CISA, GCIH, GCFA, GCFEnnBenefit Information:nnABM offers a comprehensive benefits package. For information about ABM’s benefits, visit:nn 87093nnAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.