Information Security

Job Description

The Manager, Information Security applies the understanding of a broad range of technologies and solutions to support strategic business needs and engages with customers at all levels of the organization to successfully realize the vision. They will provide strategic leadership for implementing the enterprise strategy and provide tactical leadership in managing and monitoring enterprise security solutions. Stays constantly attuned to emerging technologies and recommend business direction based on those technologies.

Detailed Description

Performs tasks such as, but not limited to, the following:

- Develop, architect and support security solutions by identifying new and alternative approaches to implementing and managing security activities. Continuously monitors security solutions and update as necessary to ensure continued intended coverage.
- Recognize and understand business security risks and assist/guide in implementing appropriate risk mitigating controls/technologies.
- Understands and interprets requirements and synthesizes and translates ideas into actionable requirements
- Provides security advice and implementation of appropriate controls to minimize the risk of potential loss of revenue, business opportunity or competitive advantage due to malicious attacks, accidental corruption of information, or unauthorized access to sensitive Company or Customer information assets.
- Assists with the development, deployment and maintenance of a Celestica Information Security Strategy including; Information Security policies, standards, guidelines, processes, technology.
- Direct vendor and company support teams, or work individually, to use standard operating facilities, diagnostic tools, technical manuals, and system documentation to identify, diagnose, and solve basic security problems as directed.
- Perform information security compliance audits
- Triage complete problem diagnosis, resolution and perform detailed root cause analysis as necessary. Demonstrate crisis management related to mission critical environments.Action to be performed either individually or by directing vendor and/or company support teams in a collaborative manner.
- Provide tier-three SME escalation support to the Service Desk for information security issues, including maintaining historical information, making adjustments, compiling statistics to increase performance, and compiling performance metrics.

Knowledge/Skills/Competencies

- Knowledge of Celestica's technology, business and IT strategies
- Excellent verbal and written communication skills
- Creative problem solving skills
- Knowledge of IT delivery/operations
- Excellent Project Management and Change Management skills
- Ability to work in a team environment as well as coordinate cross-functionally
- Strong customer management skills; ability to clearly articulate the role that IT can play in enhancing the customer's activities
- Technical knowledge of specific areas of computer operations/applications support
- Knowledge of the latest security techniques, hardware, software and network technology
- Ability to define and follow processes, policies and standards
- Experience in reviewing raw log data to determine relevant and sufficient information
- Ability to understand malware threats, vulnerability and system event management
- Vulnerability management techniques and remediation procedures/process
- Knowledge of Information Security standards/regulatory compliance (ISO 27001/1, SoX, NIST, etc.)
- Experience in preparing financial reports
- Skills and Experience in installing and managing complex security solutions
- Ability to predict, detect and respond to potential malicious factors
- Systematic identification, analysis and measurement of risks
- Great operating systems knowledge (both Microsoft and *NIX)
- Knowledge of MySQL, SQL or Oracle DBs are an advantage

Physical Demands

- Duties of this position are performed in a normal office environment.
- Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required.

Typical Experience

4 to 6 yearsof relevant experiencein configuring, managing and solutioning complex security requirements for one or more business environments.

Typical Education

- Bachelor's Degreeor consideration of an equivalent combination of education and experience.
- Educational Requirements may vary by Geography

Notes

This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.

---