Time to get to work! LRS Consulting Services is seeking an experienced Manager of Security Operations for our client in Central Illinois. This is a 6-month contract to hire opportunity for the right person. If you’re that person and if you have the Security Operations Management expertise that we need, submit your resume now!

LRS Consulting Services has been delivering IT excellence for over three decades. Our reputation for quality, flexibility, and strong relationships with our clients keeps them turning to us to meet their IT consulting needs. Our contacts, combined with your technical expertise, equals career possibilities for you. So let’s get to work!

Job Qualifications:

3+ years of professional, IT support experience. (desktop and technical support)Ability to develop positive relationships with individuals in other departments or units.Inputting and fulfilling tickets in ticketing system ServiceNowCustomer service and customer support/troubleshootingTroubleshooting OS and 3rd party software - Software installation experienceDemonstrated ability to execute against large scale organizational program initiatives.Strategic thinking, change management, project management, multi-tasking and analytical problem-solving skills.

Requirements:
The Manager, Security Operations, is responsible for implementing and managing the enterprise cybersecurity program, ensuring the protection of the organization’s information assets while enabling business objectives. This role involves identifying, evaluating, and reporting on legal, regulatory, IT, and cybersecurity risks, providing actionable insights to stakeholders at all levels. This position proactively collaborates with business partners to implement cybersecurity practices aligned with established policies and standards, fostering a culture of security awareness and compliance. The Manager, Security Operations, leads the development and execution of operational strategies to address emerging threats, ensure incident readiness, and maintain a robust cybersecurity posture.

In addition, the manager of Security Operations will:

Defines and facilitates the operational processes for cybersecurity risk in collaboration with IS Security including the reporting and oversight of treatment efforts to address negative findings.Liaises with the enterprise architecture team to build alignment between the security and enterprise (reference) architectures, thus ensuring that cybersecurity requirements are implicit in these architectures and security is built in by designDevelops and oversees effective resilience policies and standards to align with the enterprise resilience program goals, with the realization that components supporting primary business processes may be outside the corporate perimeterCoordinates the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provides direction, support and in-house consulting in these areasFacilitates a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitates appropriate resource allocation, and increases the maturity of the cybersecurity, and reviews it with stakeholders at the executive and board levelsOperationalize strategic, comprehensive cybersecurity program to ensure appropriate levels of confidentiality, integrity, availability of information assets owned, controlled or/and processed by the organization as well as the meeting of safety, privacy, reliability and resilience requirements as needed.Leads the cybersecurity function across the company to ensure consistent and high-quality information security management in support of the business goalsDefine and manage IAM program that balances access with compliance and confidentiality and business requirementsDetermines the cybersecurity approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of non-digital risk areasFollow all risk remediation protocols to ensure issues are mitigated, risks are accounted for, and exceptions are tracked in accordance with frameworks, policies and standards set by the organizationDocuments formal, technical incident reports for consumption by infrastructure teams and senior leadershipProvides infrastructure teams with incident support, including mitigating actions to contain activity and advisory for remedial actions.Carries out root cause analysis and investigations to advise on prevention mechanisms and configuration changes.Maintains professional growth and development through continuing education, seminars, workshops and professional affiliations.Must have experience with the following:
5 years of experience to successfully performing the Principal Duties & Responsibilities of a Security Operations ManagerExperience with risk assessment, incident response, and security audits.Familiar with DevOps security concepts and best practices, and be able to integrate security into the DevOps pipelineFamiliar with cloud security concepts and best practices, as well as the security features and capabilities of major cloud platforms such as AWS, Azure, and GCP.Familiar with security automation tools and techniques, and be able to use them to automate security tasks and improve the efficiency of the SOC.Experienced decision-maker with a proven track record of weighing relative costs and benefits of potential actions and identifying the most appropriate option.Experience managing enterprise security solutions, such as firewalls, intrusion detection systems, intrusion prevention systems, security information and event management (SIEM) systems, security orchestration, automation, and response (SOAR) platforms, and other security tools and technologies.Experience with common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity FrameworkDesired:Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials

Candidate must be able to effectively communicate in English (written & verbal)
Candidate must have permanent authorization to work in the USA for any employer
Corp to corp candidates will not be considered

LRS is an equal opportunity employer. Applicants for employment will receive consideration without unlawful discrimination based on race, color, religion, creed, national origin, sex, age, disability, marital status, gender identity, domestic partner status, sexual orientation, genetic information, citizenship status or protected veteran status.