10,694 Cybersecurity jobs in the United States

Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels.  Carpenter Technology’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.  Building on its history of innovation, Carpenter Technology’s wrought and powder technology capabilities support a range of next-generation products and manufacturing techniques, including novel magnetic materials and additive manufacturing.

CYBERSECURITY ANALYST IV – DATA PROTECTION

PRIMARY RESPONSIBILITIES FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Leads data protection related projects, control assessment, and information lifecycle management. 
• Assist in the review of data protection requirements of business functions and document the available solutions and processes; DLP, Tokenization, Logical Access Controls, Encryption, and other related data protection technologies
• Lead working committees and orchestrate Data Protection Advocates embedded in each business function.
• Collaborates with Cybersecurity and IT teams to keep Data Leakage Prevention (DLP) infrastructures in optimal ready state.
• Creates/updates standard operating procedures and as-built documentation.  Routinely publishes performance metrics.
• Promote Data-Centric Security design and operations
• Partners with Legal to evaluate new compliance obligations, confirms systems in scope, assesses risk, and recommends actions for IT and Business Policy and Process improvements.
• Develops and advances data protection awareness campaigns including Policy and Best Practices
• Advises multiple teams (IT, Manufacturing, R&D, Customer Solutions, Managers, etc.) with data classification, proper data handling, data truncation/masking, record retention, policies, and best practices.  Contributes to business enabling initiatives.  Provides prescriptive guidance regarding secure handling of data. 
• Assists with incident handling and digital forensic examination
• Enables Artificial Intelligence and Machine Learning technology in a data secure manner
• Examines design and operational effectiveness of security controls.  Coordinates audit engagements led by Internal Audit, Regulator, or external audit firm.
• Performs assessment of internal and third-party cybersecurity risk.  Examines audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc.).  Prepares responses to customer inquiries about Carpenter compliance related to IT and Security.
• Routinely publishes Governance, Risk, and Compliance (GRC) metrics.
• Perform all other duties and special projects as assigned.

REQUIRED FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Bachelor of Science degree in computer science or related field preferred.
• Associate's degree in computer science or related field minimum required with a combination of Cybersecurity related certifications (e.g., CISSP, CISM, GCIH, GCIA, CEH, Security+, etc.) and additional 2 years' experience.
• Strong understanding of Data Protection Legislation, GDPR and CUI requirements including impact and risk assessments
• Advanced understanding of Data Management technology and principles
• Minimum 9 years of related experience with Data Protection, Access Management, Security Operations, Vulnerability Management, Logica Access Controls, Compliance, or Audit
• Advanced understanding of information technology
• Advanced knowledge of multiple security domains and common security controls
• Expert knowledge of 3-6 security domains
• Strong understanding of data protection regulations and standards, with enterprise-wide application
• Review and improve data usage, data protection controls, and data architecture across Corporate and Manufacturing Systems
• Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.)
• Basic understanding of Cloud environment (AWS and Azure) and secure design
• Security Incident Planning and Handling
• Lead for large IT/Cybersecurity projects
• Multi-task and manage demands of multiple projects, incidents, and tasks
• Meet deadlines and manage changing priorities
• Perform effectively both independently and in a team environment
• Security Initiative Project Management

PREFERRED FOR THE CYBERSECURITY ANALYST IV-DATA PROTECTION

• Strong collaboration skills and comfortable working in a team environment
• Manage stressful situations associated with cyber-attack and compliance
• Influence fellow technical staff regarding security, compliance, and risk
• Identifies opportunities for improvement and makes constructive suggestions for change
• Perform research and communicating findings to technical and non-technical audience
• Ability to liaise with and brief senior stakeholders

Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees.

Carpenter Technology Corporation’s policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.

Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels.  Carpenter Technology’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.  Building on its history of innovation, Carpenter Technology’s wrought and powder technology capabilities support a range of next-generation products and manufacturing techniques, including novel magnetic materials and additive manufacturing.

CYBERSECURITY ANALYST IV – DATA PROTECTION

PRIMARY RESPONSIBILITIES FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Leads data protection related projects, control assessment, and information lifecycle management. 
• Assist in the review of data protection requirements of business functions and document the available solutions and processes; DLP, Tokenization, Logical Access Controls, Encryption, and other related data protection technologies
• Lead working committees and orchestrate Data Protection Advocates embedded in each business function.
• Collaborates with Cybersecurity and IT teams to keep Data Leakage Prevention (DLP) infrastructures in optimal ready state.
• Creates/updates standard operating procedures and as-built documentation.  Routinely publishes performance metrics.
• Promote Data-Centric Security design and operations
• Partners with Legal to evaluate new compliance obligations, confirms systems in scope, assesses risk, and recommends actions for IT and Business Policy and Process improvements.
• Develops and advances data protection awareness campaigns including Policy and Best Practices
• Advises multiple teams (IT, Manufacturing, R&D, Customer Solutions, Managers, etc.) with data classification, proper data handling, data truncation/masking, record retention, policies, and best practices.  Contributes to business enabling initiatives.  Provides prescriptive guidance regarding secure handling of data. 
• Assists with incident handling and digital forensic examination
• Enables Artificial Intelligence and Machine Learning technology in a data secure manner
• Examines design and operational effectiveness of security controls.  Coordinates audit engagements led by Internal Audit, Regulator, or external audit firm.
• Performs assessment of internal and third-party cybersecurity risk.  Examines audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc.).  Prepares responses to customer inquiries about Carpenter compliance related to IT and Security.
• Routinely publishes Governance, Risk, and Compliance (GRC) metrics.
• Perform all other duties and special projects as assigned.

REQUIRED FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Bachelor of Science degree in computer science or related field preferred.
• Associate's degree in computer science or related field minimum required with a combination of Cybersecurity related certifications (e.g., CISSP, CISM, GCIH, GCIA, CEH, Security+, etc.) and additional 2 years' experience.
• Strong understanding of Data Protection Legislation, GDPR and CUI requirements including impact and risk assessments
• Advanced understanding of Data Management technology and principles
• Minimum 9 years of related experience with Data Protection, Access Management, Security Operations, Vulnerability Management, Logica Access Controls, Compliance, or Audit
• Advanced understanding of information technology
• Advanced knowledge of multiple security domains and common security controls
• Expert knowledge of 3-6 security domains
• Strong understanding of data protection regulations and standards, with enterprise-wide application
• Review and improve data usage, data protection controls, and data architecture across Corporate and Manufacturing Systems
• Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.)
• Basic understanding of Cloud environment (AWS and Azure) and secure design
• Security Incident Planning and Handling
• Lead for large IT/Cybersecurity projects
• Multi-task and manage demands of multiple projects, incidents, and tasks
• Meet deadlines and manage changing priorities
• Perform effectively both independently and in a team environment
• Security Initiative Project Management

PREFERRED FOR THE CYBERSECURITY ANALYST IV-DATA PROTECTION

• Strong collaboration skills and comfortable working in a team environment
• Manage stressful situations associated with cyber-attack and compliance
• Influence fellow technical staff regarding security, compliance, and risk
• Identifies opportunities for improvement and makes constructive suggestions for change
• Perform research and communicating findings to technical and non-technical audience
• Ability to liaise with and brief senior stakeholders

Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees.

Carpenter Technology Corporation’s policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.

Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels.  Carpenter Technology’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.  Building on its history of innovation, Carpenter Technology’s wrought and powder technology capabilities support a range of next-generation products and manufacturing techniques, including novel magnetic materials and additive manufacturing.

CYBERSECURITY ANALYST IV – DATA PROTECTION

PRIMARY RESPONSIBILITIES FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Leads data protection related projects, control assessment, and information lifecycle management. 
• Assist in the review of data protection requirements of business functions and document the available solutions and processes; DLP, Tokenization, Logical Access Controls, Encryption, and other related data protection technologies
• Lead working committees and orchestrate Data Protection Advocates embedded in each business function.
• Collaborates with Cybersecurity and IT teams to keep Data Leakage Prevention (DLP) infrastructures in optimal ready state.
• Creates/updates standard operating procedures and as-built documentation.  Routinely publishes performance metrics.
• Promote Data-Centric Security design and operations
• Partners with Legal to evaluate new compliance obligations, confirms systems in scope, assesses risk, and recommends actions for IT and Business Policy and Process improvements.
• Develops and advances data protection awareness campaigns including Policy and Best Practices
• Advises multiple teams (IT, Manufacturing, R&D, Customer Solutions, Managers, etc.) with data classification, proper data handling, data truncation/masking, record retention, policies, and best practices.  Contributes to business enabling initiatives.  Provides prescriptive guidance regarding secure handling of data. 
• Assists with incident handling and digital forensic examination
• Enables Artificial Intelligence and Machine Learning technology in a data secure manner
• Examines design and operational effectiveness of security controls.  Coordinates audit engagements led by Internal Audit, Regulator, or external audit firm.
• Performs assessment of internal and third-party cybersecurity risk.  Examines audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc.).  Prepares responses to customer inquiries about Carpenter compliance related to IT and Security.
• Routinely publishes Governance, Risk, and Compliance (GRC) metrics.
• Perform all other duties and special projects as assigned.

REQUIRED FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Bachelor of Science degree in computer science or related field preferred.
• Associate's degree in computer science or related field minimum required with a combination of Cybersecurity related certifications (e.g., CISSP, CISM, GCIH, GCIA, CEH, Security+, etc.) and additional 2 years' experience.
• Strong understanding of Data Protection Legislation, GDPR and CUI requirements including impact and risk assessments
• Advanced understanding of Data Management technology and principles
• Minimum 9 years of related experience with Data Protection, Access Management, Security Operations, Vulnerability Management, Logica Access Controls, Compliance, or Audit
• Advanced understanding of information technology
• Advanced knowledge of multiple security domains and common security controls
• Expert knowledge of 3-6 security domains
• Strong understanding of data protection regulations and standards, with enterprise-wide application
• Review and improve data usage, data protection controls, and data architecture across Corporate and Manufacturing Systems
• Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.)
• Basic understanding of Cloud environment (AWS and Azure) and secure design
• Security Incident Planning and Handling
• Lead for large IT/Cybersecurity projects
• Multi-task and manage demands of multiple projects, incidents, and tasks
• Meet deadlines and manage changing priorities
• Perform effectively both independently and in a team environment
• Security Initiative Project Management

PREFERRED FOR THE CYBERSECURITY ANALYST IV-DATA PROTECTION

• Strong collaboration skills and comfortable working in a team environment
• Manage stressful situations associated with cyber-attack and compliance
• Influence fellow technical staff regarding security, compliance, and risk
• Identifies opportunities for improvement and makes constructive suggestions for change
• Perform research and communicating findings to technical and non-technical audience
• Ability to liaise with and brief senior stakeholders

Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees.

Carpenter Technology Corporation’s policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.

Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels.  Carpenter Technology’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.  Building on its history of innovation, Carpenter Technology’s wrought and powder technology capabilities support a range of next-generation products and manufacturing techniques, including novel magnetic materials and additive manufacturing.

CYBERSECURITY ANALYST IV – DATA PROTECTION

PRIMARY RESPONSIBILITIES FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Leads data protection related projects, control assessment, and information lifecycle management. 
• Assist in the review of data protection requirements of business functions and document the available solutions and processes; DLP, Tokenization, Logical Access Controls, Encryption, and other related data protection technologies
• Lead working committees and orchestrate Data Protection Advocates embedded in each business function.
• Collaborates with Cybersecurity and IT teams to keep Data Leakage Prevention (DLP) infrastructures in optimal ready state.
• Creates/updates standard operating procedures and as-built documentation.  Routinely publishes performance metrics.
• Promote Data-Centric Security design and operations
• Partners with Legal to evaluate new compliance obligations, confirms systems in scope, assesses risk, and recommends actions for IT and Business Policy and Process improvements.
• Develops and advances data protection awareness campaigns including Policy and Best Practices
• Advises multiple teams (IT, Manufacturing, R&D, Customer Solutions, Managers, etc.) with data classification, proper data handling, data truncation/masking, record retention, policies, and best practices.  Contributes to business enabling initiatives.  Provides prescriptive guidance regarding secure handling of data. 
• Assists with incident handling and digital forensic examination
• Enables Artificial Intelligence and Machine Learning technology in a data secure manner
• Examines design and operational effectiveness of security controls.  Coordinates audit engagements led by Internal Audit, Regulator, or external audit firm.
• Performs assessment of internal and third-party cybersecurity risk.  Examines audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc.).  Prepares responses to customer inquiries about Carpenter compliance related to IT and Security.
• Routinely publishes Governance, Risk, and Compliance (GRC) metrics.
• Perform all other duties and special projects as assigned.

REQUIRED FOR THE CYBERSECURITY ANALYST IV – DATA PROTECTION

• Bachelor of Science degree in computer science or related field preferred.
• Associate's degree in computer science or related field minimum required with a combination of Cybersecurity related certifications (e.g., CISSP, CISM, GCIH, GCIA, CEH, Security+, etc.) and additional 2 years' experience.
• Strong understanding of Data Protection Legislation, GDPR and CUI requirements including impact and risk assessments
• Advanced understanding of Data Management technology and principles
• Minimum 9 years of related experience with Data Protection, Access Management, Security Operations, Vulnerability Management, Logica Access Controls, Compliance, or Audit
• Advanced understanding of information technology
• Advanced knowledge of multiple security domains and common security controls
• Expert knowledge of 3-6 security domains
• Strong understanding of data protection regulations and standards, with enterprise-wide application
• Review and improve data usage, data protection controls, and data architecture across Corporate and Manufacturing Systems
• Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.)
• Basic understanding of Cloud environment (AWS and Azure) and secure design
• Security Incident Planning and Handling
• Lead for large IT/Cybersecurity projects
• Multi-task and manage demands of multiple projects, incidents, and tasks
• Meet deadlines and manage changing priorities
• Perform effectively both independently and in a team environment
• Security Initiative Project Management

PREFERRED FOR THE CYBERSECURITY ANALYST IV-DATA PROTECTION

• Strong collaboration skills and comfortable working in a team environment
• Manage stressful situations associated with cyber-attack and compliance
• Influence fellow technical staff regarding security, compliance, and risk
• Identifies opportunities for improvement and makes constructive suggestions for change
• Perform research and communicating findings to technical and non-technical audience
• Ability to liaise with and brief senior stakeholders

Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees.

Carpenter Technology Corporation’s policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.

REQUIREMENTS
Ideal candidate will have large law firm experience advising clients about cybersecurity and privacy matters, including compliance counseling, privacy policy development and implementation, cyber-incident response, data breach notification, regulatory investigations, and litigation experience. Must be able to assume appropriate level of responsibility and have strong research, analytical and presentation skills. Candidate should have ability to work in a team, on fast-paced matters, and have superior academic credentials.

SUMMARY
Vanguard Intellectual Partners (Vanguard-IP) specializes in the placement of IP/Patent/Privacy professionals nationwide.

Our concentrated focus in these areas enables us to more deeply understand our clients' technical needs, and our candidates' individual talents and career interests. Our broad network of long-term client relationships gives us a competitive edge.

Our recruiters all have 10+ years of IP recruiting experience, and an exceptional record of success. We have superior knowledge of the IP job market, and offer trusted career advice for our candidates. We also have the resources and high-level contacts to get your resume noticed by the people who matter.

We look forward to speaking with you, and learning more about what you are seeking in your next opportunity.

CONFIDENTIALITY
At Vanguard-IP, we respect the confidentiality of every candidate who contacts us. Furthermore, we will always obtain expressed authorization before submitting your resume to any of our clients.

**Should you have an interest in exploring opportunities in another location, we have hundreds of openings in other markets. Please apply now and our team would be happy to review your information for this or other openings in your location of interest.

REQUIREMENTS

Ideal candidate will have large law firm experience advising clients about cybersecurity, privacy and data protection matters, including compliance counseling, privacy policy development and implementation, cyber-incident response, data breach notification, and regulatory investigations. Privacy litigation experience and IAPP CIPP/US certification are a plus. The candidate must be able to assume appropriate level of responsibility and have strong research, analytical and presentation skills. Candidate should have ability to work in a team, on fast-paced matters, and have superior academic credentials.

SUMMARY

Vanguard-IP specializes in the placement of IP/Patent professionals nationwide.

Our focus provides us with a deeper knowledge of our clients' needs, and our candidates' individual talents and career interests. Our broad network of long-term client relationships also gives us a competitive edge.

Our recruiters all have 10+ years of IP recruiting experience, and an exceptional record of success. We have superior knowledge of the IP job market, and offer trusted career advice for our candidates. We also have the resources and high level contacts to get your questions answered.

We look forward to speaking with you, and learning more about what you are seeking in your next opportunity.

CONFIDENTIALITY

At Vanguard-IP, we respect the confidentiality of every candidate who contacts us. We will always contact you to obtain explicit prior authorization before submitting your resume to any of our clients.

Should you have an interest in a similar position in another location, we have hundreds of openings in other markets. Please apply now and our team would be happy to review your information for this or other openings in your location of interest.

Our client, a leader in secure data management, is seeking a highly skilled Senior Information Security Analyst to join their fully remote cybersecurity team. This role is crucial in safeguarding the organization's digital assets and information systems from evolving cyber threats. You will be responsible for monitoring security systems, identifying vulnerabilities, responding to incidents, and implementing robust security measures. This position demands a proactive approach, deep technical expertise, and a commitment to maintaining the highest standards of information security.

Responsibilities:

• Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR) to detect and respond to threats.
• Conduct vulnerability assessments and penetration testing to identify weaknesses in systems and networks.
• Develop and implement security policies, procedures, and best practices.
• Manage and maintain security infrastructure, including firewalls, antivirus solutions, and encryption tools.
• Lead incident response activities, including investigation, containment, eradication, and recovery.
• Perform security risk assessments and develop mitigation strategies.
• Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and technologies.
• Develop and deliver security awareness training to employees.
• Collaborate with IT teams to ensure the secure configuration and deployment of systems.
• Contribute to the development and refinement of disaster recovery and business continuity plans.
• Generate regular security reports for management, highlighting key findings and recommendations.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree or relevant certifications (CISSP, CISM, CEH) are a strong plus.
• Minimum of 5 years of experience in information security, with a focus on security analysis, incident response, and vulnerability management.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, EDR solutions, and vulnerability scanning tools.
• Strong understanding of networking protocols, operating systems (Windows, Linux), and common cyber attack vectors.
• Experience with cloud security (AWS, Azure, GCP) is highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
• Ability to work independently and effectively manage time in a remote work environment.
• Must be authorized to work in the US.

This is an exceptional opportunity for a seasoned security professional to play a key role in protecting critical information assets for a dynamic organization, offering the flexibility of remote work.

**Cybersecurity Advisor - Federal Cybersecurity - US Round Rock**
The Dell Security & Resiliency organization (SRO) manages the security risk across all aspects of Dell's business. We are currently experiencing incredible growth to meet the security needs of the world's largest technology company. With team members located in over 15 countries, you will have an excellent opportunity to influence the security culture at Dell and further develop your career. 
**What you'll achieve**
As a Cybersecurity Advisor, you will be a member of our internally facing, corporate Federal Cybersecurity organization with responsibility for contributing security and compliance experience and technical skillset across a variety of projects and engagements. The Cybersecurity Advisor will be considered a security, compliance, and technical expert and will assist in the development and communication of authoritative security-focused policies, standards, guidelines and control requirements. This role interacts with all levels of the organization, particularly within the Global Dell Digital (IT) organization. The Federal Cybersecurity team ensures customer satisfaction through professional engagement and use of a risk-based approach.
**You will:**
+ Participate as a Cybersecurity Advisor on various projects & initiatives across Dell Federal providing security and compliance guidance & direction while ensuring adherence to Dell Federal's security policies & standards
+ Define security requirements while engaging directly with stakeholders within Dell Federal's Business Units and the Information Technology organizations to ensure products, services and solutions are designed to adhere to those requirements across Dell Federal's environments
+ Consult with internal, technical and business teams to provide security and compliance guidance and/or solutions to minimize security risks and guide internal customers in the development and implementation of security controls for their environments
+ Investigate complex, and sometimes historic practices/solutions to determine gaps and needed improvements and facilitate migration to a preferred state
+ Develop and maintain comprehensive documentation of engagements performed and risks and/or issues identified
**Take the first step towards your dream career**
**Every Dell Technologies team member brings something unique to the table. Here's what we are looking for with this role:**
**Essential Requirements**
+ Strong knowledge and understanding of information security practices and policies, including Information security frameworks, standards, and best practices
+ Strong knowledge and understanding of Federal compliance requirements, including DFARS , ITAR, NIST 800-171, and CMMC Level 3
+ 5+ years Security experience
+ Technical knowledge and experience with general network security, authentication, security protocols, access control, cryptography, application security and data protection
**Desirable Requirements**
+ Bachelor's degree in computer science, Information Systems, or a related field
+ Knowledge of audit standards, as well as knowledge of regulatory requirements and frameworks such as NIST 800-53, NIST Cyber, ISO 27001, ISO 27002, EU GDPR, PCI and Cyber Essentials framework helpful
**Compensation**
Dell is committed to fair and equitable compensation practices. The salary range for this position is $121,550 - 157,300
**Benefits and Perks of working at Dell Technologies**
Your life. Your health. Supported by your benefits. You can explore the overall benefits experience that awaits you as a Dell Technologies team member - right now at MyWellatDell.com
**Here's our story; now tell us yours**
Dell Technologies helps organizations and individuals build a brighter digital tomorrow. Our company is made up of more than 150,000 people, located in over 180 locations around the world. We're proud to be a diverse and inclusive team and have an endless passion for our mission to drive human progress.
What's most important to us is that you are respected, feel like you can be yourself and have the opportunity to do the best work of your life -- while still having a life. We offer excellent benefits, bonus programs, flexible work arrangements, a variety of career development opportunities, employee resource groups, and much more.
We started with computers, but we didn't stop there. We are helping customers move into the future with multi-cloud, AI and machine learning through the most innovative technology and services portfolio for the data era. Join us and become a part of what's next in technology, starting today.
You can also learn more about us by reading our latest Diversity and Inclusion Report and our plan to make the world a better place by 2030 here ( .
Dell is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Dell are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Dell will not tolerate discrimination or harassment based on any of these characteristics. Dell encourages applicants of all ages. Read the full Employment Opportunity Policy here ( .
**Job ID:** R

Director of Cybersecurity, IT Cybersecurity

Full-Time, Day Shift, 80 hours per pay period

Covenant Health Overview:

Covenant Health is the region’s top-performing healthcare network with 10 hospitals , outpatient and specialty services , and Covenant Medical Group , our area’s fastest-growing physician practice division. Headquartered in Knoxville, Covenant Health is a community-owned integrated healthcare delivery system and the area’s largest employer. Our more than 11,000 employees, volunteers, and 1,500 affiliated physicians are dedicated to improving the quality of life for the more than two million patients and families we serve every year. Covenant Health is the only healthcare system in East Tennessee to be named a Forbes “Best Employer” seven times.

Position Summary:

The Director of Cybersecurity reports to the Chief Information Security Officer (CISO) and is responsible for overseeing cybersecurity operations and strategy within Covenant Health. This role ensures Confidentiality, Integrity, and Availability of information assets, particularly sensitive data (PHI). This role also involves setting the vision and direction for cybersecurity services, implementing standards and security policies that are maintained, and managing technical implementation projects. The Director of Cybersecurity has financial and budgetary responsibilities, manages a wide range of vendors and external partners, and personnel management within the cybersecurity area. This position leads and ensures performance management and career development for an extended team of cybersecurity professionals. The role also involves developing strategic cybersecurity roadmaps and collaborating with other IT and clinical technology teams within the health system to secure sensitive data and ensure compliance with HIPAA regulations

Recruiter: Suzie McGuinn |

Responsibilities

Leadership & Team Management

• Leadership: Direct and provide leadership to all cybersecurity staff, including Security Analysts, Incident Responders, and Compliance Specialists
• Change Agent: Support and lead the efforts to change team cultures, dynamics, processes, and technologies that provide modern solutions to the organization
• Team Management: Lead cybersecurity management team to ensure performance management and career development. Provide technical leadership and direction, delegate responsibilities appropriately, and identify management development opportunities
• Staff Development: Provide leadership, development, coaching, and guidance to ensure the appropriate departmental developmental goals are set and achieved
• Ongoing Continuous Development: Champion innovative efforts and stay abreast of leading-edge solutions for recruitment, development, and retention of the cybersecurity workforce

Cybersecurity Operations

• Operations Oversight: Oversee the day-to-day operations of cybersecurity measures, including monitoring, detection, and response to security incidents
• Incident Response: Lead the incident response team in managing and resolving security breaches and incidents
• Compliance: Ensure compliance with HIPAA and other relevant regulations and standards
• Technical Implementation: Lead technical implementation projects related to cybersecurity, creating plans and strategies to meet the needs of the organization
• Continuous Improvement: Stay informed about emerging technologies and industry trends, making recommendations for improvement

Strategic Planning & Implementation

• Strategic Planning: Develop and maintain strategic cybersecurity roadmaps, provide tactical action plans, and ensure optimum planning of cybersecurity projects and resources
• Resource Planning: Conduct proactive resource planning based on anticipated demand
• Milestone Establishment: Establish deliverables and projected milestones for solution delivery in partnership with business leaders and Senior Executives
• Technical Roadmap: Lead the development of cybersecurity strategies and technical roadmap, ensuring integration with overall IT and organizational strategies

Vendor & Budget Management

• Vendor Management: Manage relationships with cybersecurity vendors, ensuring that contracts and agreements are in place and that vendor performance meets organizational standards
• Budget Management: Develop annual operating budgets and long-term capital budgets for cybersecurity projects

Operational Efficiency

• Performance Monitoring: Monitor network and systems performance, ensuring availability and reliability. Perform capacity planning
• Service Management: Oversee operational and service management processes to ensure performance of all technology subcontractors

Collaboration & Relationship Building

• Collaboration: Collaborate with other IT teams and clinical IT teams to ensure alignment and integration of cybersecurity services within the health system
• Relationship Building: Develop relationships with key business leaders to identify service gaps and propose solutions. Maintain credibility with key individuals at hospitals and corporate offices, along with Legal, HR, and Privacy/Compliance.

Security Awareness and Training Programs

• Training Programs: Develop and implement security awareness and training programs for employees to ensure they understand and adhere to cybersecurity policies and procedures.

Third-Party Risk Management

• Risk Management: Oversee the assessment and management of cybersecurity risks associated with third-party vendors, partners, and bio-medical devices.

Policy Development and Enforcement

• Policy Development: Develop, implement, and enforce cybersecurity policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.

Security Architecture and Design

• Architecture and Design: Lead the design and implementation of secure network architectures and systems to protect sensitive data and ensure the integrity of IT infrastructure.

Incident Management and Forensics

• Incident Management: Oversee incident management and forensic investigations to identify root causes, mitigate risks, and prevent future incidents.

Regulatory Compliance

• Regulatory Compliance: Ensure compliance with relevant regulations such as HIPAA, HITECH, and other healthcare-specific cybersecurity requirements.

Business Continuity and Disaster Recovery

• Continuity and Recovery: Develop and maintain business continuity and disaster recovery plans to ensure the organization can quickly recover from cybersecurity incidents.

Other Responsibilities

• Local Travel: Required for the role
• Other Duties: Perform other related duties as assigned

Qualifications

Education:

None specified; will accept any combination of formal education and/or prior work experience sufficient to demonstrate possession of the knowledge, skill and ability needed to perform the essential tasks of the job, typically such as would be equivalent to a Bachelor’s degree. Preference may be given to individuals possessing a Bachelor’s degree in Cybersecurity, Information Technology or a directly-related field from an accredited college or university.

Experience:

Minimum of 7 years of leadership experience in cybersecurity within an enterprise-sized IT organization is required.

Licensure:

Employee must have a valid Tennessee driver’s license and state mandated minimum insurance coverage. Driving record must meet Covenant Health minimum standards at the date of hire and throughout employment tenure.