The Manager of Cybersecurity Operations provides leadership and oversight to the delivery of security services to Speedway. This role works with leaders in Technology Infrastructure, Internal Audit, Legal, Enterprise Risk Management, Corporate Security, and other IT and business support areas. Additionally, this role will identify and lead initiatives to drive security operations and to improve the overall security posture and maturity of the organization.
This role will be responsible for the management of internal and contracted resources as well as outsourced service providers. The scope will include a wide variety of security disciplines, including but are not limited to Security Operations Center (SOC) services, cloud security, Identify Access Management (IAM), security event monitoring, incident response, vulnerability management, PKI, encryption, and multi-factor authentication. The ideal candidate will possess a strong business acumen, deep knowledge of relevant technologies within area of accountability, relevant IT security certifications, experience leading internal teams and outsourcing relationships, and effective leadership and communication skills.
Provide leadership and oversight to the operational aspects of Speedway’s cybersecurity program
Plans, sets direction, oversees, and provides critical support in the strategic and tactical planning for the design, implementation and use of cybersecurity technology, to include ongoing budget planning
Oversees and manages processes, Service Level Agreements, and relationships with outsourced security service providers
Oversees and manages cyber incident response activities and preparedness; oversees, leads, participates and contributes to enterprise security breach response activities
Oversees and leads the decision making on the overall design and ongoing implementation of a computer forensics lab and security operations center (SOC)
Tracks and reports on operational security metrics and performance
Participates in special projects and performs other duties as assigned
Identify, select and manage security vendors to ensure that service delivery and support meet performance and business objectives
Continuously evaluate and assess current and future security needs of the organization and make recommendations and business case requests to substantiate changes
Manage customer communications as they relate to security initiatives
Anticipate trends, situations, and changing cybersecurity threats and take appropriate action on a timely basis, including building relationships and sharing of cybersecurity intelligence with private and public entities
Provide leadership to team including personal development, coaching, mentoring, performance management, and employee engagement
Bachelor’s Degree or equivalent education and experience
10+ years of overall work experience
5+ years professional IT supervision experience
5+ years relevant technology experience
Provides leadership to managers, supervisors, and/or high-level professional staff
Manages one or more complex business functions
Cyber security experience in retail business preferred
Excellent communication skills and the ability to research and resolve issues
Excellent time management skills and ability to multi-task and track multiple projects concurrently
Excellent oversight of large scale cyber security and technology initiatives and operations
Ability to perform repeated bending, standing, and reaching
Ability to occasionally lift up to 40 pounds
This job description is intended to describe the general nature and level of the work being performed by the individuals assigned to this job.
This is not an exhaustive list of all duties and responsibilities. Management reserves the right to amend and change the duties and responsibilities of this job to meet business and organizational needs as necessary.