Manager, IT Security Operations in Parsippany, NJ at Securitas Security Services USA

Date Posted: 8/6/2019

Job Snapshot

Job Description

Job Code: 88673082007

Category: Manager-Professional

This role is responsible for security event monitoring, incident response, user behavior analysis, threat hunting, as well as maintaining the confidentiality and integrity of customer, employee, and business information in compliance with organization, industry, and regional policies and standards.  The position requires hands on technical experience, deep technical knowledge and understanding of information security and associated solutions and tools such as data loss prevention, database security, endpoint and network security tools, and best practices.

The individual in this role will report to the VP, Infrastructure Services.


  • The functions listed describe the business purpose of this job or position.  Specific duties or tasks may vary and be documented separately.  An associate might or might not be required to perform all functions listed. Additional duties may be assigned, and functions may be modified, according to business necessity.
  • All assigned duties or tasks are deemed to be part of the essential functions, unless such duties or tasks are unrelated to the functions listed, in which case they are deemed to be other (non-essential) functions.
  • Associates are held accountable for successful job performance.  Job performance standards may be documented separately, and may include functions, objectives, duties or tasks not specifically listed herein.
  • In performing functions, duties or tasks, associates are required to know and follow safe work practices, and to be aware of company policies and procedures related to job safety, including safety rules and regulations.  Associates are required to notify superiors upon becoming aware of unsafe working conditions.
  • All functions, duties or tasks are to be carried out in an honest, ethical and professional manner, and to be performed in conformance with applicable company policies and procedures.  In the event of uncertainty or lack of knowledge of company policies and procedures, associates are required to request clarification or explanations from superiors or authorized company representatives.

  • Build, grow, develop, and oversee a security operations team inclusive external providers to increase the value, sophistication and application of internal threat intelligence services.
  • Enhance the functionality and proficiency of Securitas security operations practice which include the following:
    • Lead the Cyber Security Incident response practice responsible for 24x7x365 monitoring of all security events and management of all security threats, incident response and cyber threat intelligence.
    • Operating intrusion detection and prevention (IDS/IPS) capabilities and managing Incident Response capabilities across the Enterprise
    • End-to-end ownership of vulnerability scanning and associated remediation plans and processes
    • Lead technical Identity and Access Management (IAM) services
    • Architecting, engineering, and operating Cyber Security tools to support business operations of all systems globally
    • Define, identify and classify critical information assets, assess threats and vulnerabilities regarding those assets and implement safeguards
    • Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies

Job Requirements


Additional qualifications may be specified and receive preference, depending upon the nature of the position.


  • High School Diploma or GED required.
  • BS or MA in Computer Science, Information Security, or a related field
  • Certified Information Systems Security Professional (CISSP) and/or Certified Information Security  Manager (CISM)
  • 5+  years of experience in information security, especially on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
  • 7+  years of experience in another IT function, especially IT Audit
  • 2+ years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, CIS-20, etc.)

Competencies (as demonstrated through experience, training, and/or testing):

  • Technical expertise in anti-virus solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns
  • Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System (IDS), SIEMs and other Computer Network Defense (CND) security tools.
  • Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations
  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
  • An ability to effectively influence others to modify their opinions, plans, or behaviors
  • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
  • An understanding of organizational mission, values, and goals and consistent application of this knowledge

Working Conditions and Physical/Mental Demands

With or without reasonable accommodation, a candidate must have the physical and mental capacity to effectively perform all essential functions described.  In addition to other demands, the demands of the job include:

  • Maintaining composure in dealing with authorities, executives, clients, staff and the public, occasionally under conditions of urgency and in pressure situations.
  • Successful passage of background, reference, psychological, and controlled substance tests.
  • Handling and being exposed to sensitive and confidential information.
  • Occasional lifting and/or moving up to 10 pounds.

EOE M/F/Vet/Disabilities