Job Description

Job Summary: The Information Security Manager provides security technology leadership and support while managing and implementing the Cybersecurity Program through key strategies, technologies, processes, and procedures that align with Great Wolf’s security needs and objectives. Partner with lines of business to respond to evolving business requirements and emerging threats. Leverage knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the company. Responsibilities include offering guidance, best practices, and support across businesses, managing risk reviews and vulnerability assessments, identifying threats, communicating with stakeholders, and managing budgets

Responsibilities:

Provides management and direction to Great Wolf cybersecurity platform stack, policies, processes, and procedures for our rapidly growing organizationManage the strategic approach and processes for information security and PCI compliance programs through the NIST maturity modelAssist with the implementation of security awareness training strategy to provide consistent, information security and PCI compliance training across all Great Wolf locationsResponsible for performing 3rd party risk assessment and vulnerability mitigation programs. Manage 3rd party security partner service delivery to maintain and enhance Great Wolf security postureLead functional staff operating the EDR service and ensure integration in the overall detection and response processFacilitate information gathering, requirements analysis and design standards that support actionable PAM / IAM strategies as well as functional requirements for PAM / IAM solution implementation.Assist with the day-to-day management of network and end-user security solutionsManage and deliver a complete lifecycle of vulnerability management and remediation concepts and activities. Provide support with respect to requirements gathering, project management and delivery of cybersecurity services

Qualifications:

Bachelor’s degree; STEM (science, technology, engineering, or mathematics) preferredA minimum of 7 years of experience in technology, network management, and information security3+ years of experience in vendor managementCertified Information Systems Security Professional (CISSP) certificationDeep knowledge and experience with Cisco networks and security platforms (certification preferred)Experience with modern information security software, including management of end point protectionExperience performing IT/IS security risk assessments, audits, and security incident investigationsExperience with the application of infrastructure and network high-availability and resiliency architectures Proficiency in cybersecurity domains, including policies and standards, access controls, technology resiliency, incident management, secure systems development lifecycle, vulnerability management, and data protectionProven ability to collaborate with high-performing teams and individuals throughout the business to accomplish common goalsExcellent communication, organization, and presentation skillsAbility to effectively communicate complex concepts across all levels of management

Physical Requirements:

Lift up to 20 lbs., sit and/or stand long periods.