Open Dealer Exchange has a direct hire opportunity for a Cybersecurity Manager to join the team. This position will be responsible for managing all aspects of cybersecurity in a highly regulated and compliance-driven environment. The Cybersecurity Manager will function as part of the management team, providing input to all layers of the organization providing more secure processes, audits, and environment.

Responsibilities:

• Work with IT and business leaders to develop corporate and cybersecurity standards to maintain and improving upon Open Dealer Exchange’s highly secure technical landscape.
• Develop policies, procedures, and standard reports for identifying and/or verifying potential breech of information security, confidentiality and with validation and regression testing.
• Create new information system audits as part of all system implementations managing sensitive information.
• Provide training plans for security awareness throughout the organization.
• Modify existing information system audits as part of all system upgrades managing customer information.
• Develop, maintain, and utilize system for tracking all audit results (proactive and reactive).
• Work with Human Resources and Executive Team to address any confirmed breach situations (incident response)
• Use tools to monitor and alert on potential security issues (IDS/IPS, dynamic and static application scans, etc)
• Coach and mentor other security professionals to provide career growth and increase job satisfaction.

• Minimum of five years of experience managing IT and corporate security in a highly regulated and compliant organization dealing with standards such as PCI and/or HIPAA. CISSP, CISM or other similar certifications are preferred
• Minimum 5 years of Cybersecurity management experience
• Bachelor's degree in Computer Science, Information Systems, or related field
• Knowledge of Penetration Testing methodologies and technologies
• Experience with vulnerability resolution best practices
• Knowledge of best practices for security (BSIMM, OWASP, etc.)
• Knowledge of PCI, NIST, and similar Cybersecurity Frameworks
• Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP Networks
• Knowledge of network and web related protocols (eg, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
• Understanding of the system hardening processes, tools, guidelines, and benchmarks