Experienced Full Stack Cybersecurity Manager – Network Protection and Advanced Threat (CDR) Group

Are you a seasoned cybersecurity expert looking for a challenging and rewarding role that will allow you to make a real impact on the safety and security of a global organization? Do you have a passion for network protection and advanced threat management? If so, we encourage you to apply for the Experienced Full Stack Cybersecurity Manager position at arenaflex, a leading airline that is committed to providing a safe and secure experience for its customers and employees.

About arenaflex

arenaflex is a world-class airline that operates in multiple regions around the globe, serving millions of customers and employing thousands of employees. As a global organization, we have a unique responsibility to elevate and provide valuable opportunities in the places where we work, live, and fly. We are on a mission to become the best airline in the history of flying, and we need talented individuals like you to help us achieve this goal.

Our CDR Group

arenaflex's CDR (Network Protection and Advanced Threat) group is responsible for keeping our customers' and employees' data completely safe. Our primary mission is to embed network security into the DNA of arenaflex by reducing business risk through the implementation of robust online protection standards. We are a team of highly skilled and innovative cybersecurity professionals who are passionate about staying ahead of the latest threats and technologies.

Job Summary

We are seeking an Experienced Full Stack Cybersecurity Manager to join our CDR group. As a key member of our team, you will be responsible for managing a team of highly skilled cybersecurity engineers who are responsible for creating and maintaining a comprehensive security design for arenaflex's products, applications, and services. You will be responsible for developing and executing a vision for security across all products within the arenaflex portfolio.

Key Responsibilities

* Provide regular updates, training, and presentations to staff and management on various aspects of network security

• Responsible for the administrative management of cybersecurity experts, either as direct reports or obtained - HR organization, pay organization, time reporting, etc.
• Define, prioritize, allocate resources, track, and provide status reporting of work tasks, activities, and projects
• Reviews and is responsible for departmental budgets and resource allocations
• Screens changes in regulations and compliance principles that affect assigned areas of responsibility and proactively acts to update norms, practices, and models based on this information
• Develops, organizes, and assesses the work of assigned cybersecurity division to ensure the security, integrity, confidentiality, and availability of arenaflex's systems, products, and services
• Builds relationships and partners with functional areas across the organization to raise awareness and support for network security
• Facilitates division activities with internal/external technology and vendors/partners
• Provides general asset/project management for the division, including matching individuals to projects, acquiring required resources, etc.
• Maintains relationships with internal and external audit organizations to work with the execution of audits

Execution/Support

* Manages the development and execution of network security strategies

• Works with cross-functional groups to create, document, and execute network security policies and designs
• Manages the preparation, documentation, and execution of network security assessments and testing
• Organizes remediation of vulnerable items to satisfy material compliance requirements
• Is available to answer impromptu network security and risk management events, including emergency situations

Requirements

* Bachelor's degree in a relevant field (STEM)

• At least 9 years of related experience
• Strong and demonstrated ability to communicate technical ideas to a non-technical audience and colleagues
• Experience with threat modeling or other risk identification strategies, and risk management
• Experience managing teams to identify key and strategic risks
• Experience collaborating and influencing multi-functional groups to drive security enhancements
• Experience driving prioritization of security risks/weaknesses and ensuring that they are properly understood by the organization and fixed or mitigated
• Strong logical and quantitative skills with the ability to analyze data and metrics to support hypotheses and proposals and drive actions
• Excellent oral and written communication skills
• Demonstrated ability to convey complex technical subjects in a concise and clear way
• Shown critical thinking, decision-making, organizational skills, and a willingness to learn and stretch beyond your comfort zone
• Shown knowledge of threat landscape, security threat and risk management, and security monitoring and analysis
• Must be legally authorized to work in the US for any employer without sponsorship
• Successful completion of interview expected to meet work capability
• Reliable, consistent attendance is a fundamental requirement of the position

What will help you stand out (Preferred Qualifications)

* Graduate degree or equivalent experience

• At least one of the following: CEH, GSEC, CISM, CompTIA Security+, CISSP, CISA, SSCP, CASP+, OSCP, AWS Solution Designer
• 12+ years of related experience
• Working knowledge and/or hands-on experience with as many as possible of the following areas: Operating System and platform security, Network Security and an understanding of network and web-related protocols, Voice over IP and converged communication security
• Strong subject matter expertise in the fields of IT security and risk management
• Strong knowledge of IT infrastructure security
• Experience with cloud native products and in-depth understanding of microservice geographies and executions
• Ability in application development and dev-ops security technologies and integration
• Shown ability to ponder business, product, and technical challenges
• Experience within the transition of traditional data center security efforts into industry-adopted cloud advancements
• Demonstrated history with compliance systems and requirements
• Familiar with a fast-moving and Agile development environment
• Experience providing training and mentorship
• Ability to perform manual security code audits
• Ability to decipher dynamic/static analysis tools, and penetration test results

About arenaflex's Culture

arenaflex is an equal opportunity employer. We initiate, utilize, train, adjust, and advance regardless of race, religion, color, national origin, sex, gender identity, sexual orientation, physical ability, age, veteran status, and other protected status as required by relevant law. We will ensure that individuals with disabilities are given reasonable accommodation to participate in the application process or screening, to perform essential job functions.

How to Apply

If you are a motivated and experienced cybersecurity professional looking for a challenging and rewarding role, we encourage you to apply for the Experienced Full Stack Cybersecurity Manager position at arenaflex. Please visit our website to learn more about our company culture and to submit your application. Apply Job! Apply for this job