Join Team CARFAX as a Cyber Security Senior Manager
Isn't it time you bragged about where you work? At CARFAX, we do, every day. We pride ourselves on being mission-focused on helping to grow a brand built on accuracy and integrity. We care deeply about our products and our customers. We’re more than just a company: We help millions of consumers make more informed decisions every day. We know that our teammates are our most valuable asset, and we value a balanced life while tackling challenging projects in a fast-paced environment.
The Cyber Security Senior Manager plays a pivotal role in safeguarding our organization’s information systems, networks, and data assets from cyber threats. The successful candidate will lead a team of talented security professionals, implement robust security measures, and contribute to the development and enhancement of our overall cybersecurity strategy.
At CARFAX, we believe in the power of teamwork and value in-person interactions so that we can collaborate and thrive together. This position will require 4 days per week in our Centreville, VA office subject to change with future business needs.
What you’ll be doing:
Lead and mentor a team of cybersecurity professionals while promoting culture, teambuilding and morale
Collaborate with leadership on the cybersecurity strategy and drive related gameplans
Serve as a subject matter expert and provide expertise on topics related to cyber security
Oversee the management and monitoring of security program operations and related tactical activities
Assess and analyze security risks, recommending and implementing measures to mitigate identified risks
Ensure robust security architecture across various technologies including network, physical/virtual servers, user endpoints, applications, cloud, and SaaS.
Evaluate new cybersecurity products and technologies, recommending and implementing appropriate solutions
Lead the incident response team and coordinate with various stakeholders to effectively manage and mitigate security incidents.
Conduct post-incident analysis to ascertain the root cause and develop preventive measures
Develop, implement, and enforce security policies, procedures, and standards, while ensuring compliance with regulatory requirements and best practices
Develop and deliver cybersecurity training programs to internal staff to promote security awareness and good practices
Foster a culture of security across the organization
Prepare and deliver regular reports on the status of cybersecurity initiatives and incidents to leadership and stakeholders
What we’re looking for:
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or related certifications
Minimum of 10 years of progressive experience in technology and information security, with at least 5 years in a managerial or leadership role
Experience managing security operations, incident response activities, strategic roadmaps, and related reporting & documentation
Strong security working knowledge of network & web application firewalls, endpoint detection and response, vulnerability management, system hardening, cloud security, and identity and access management