Senior Manager Cyber Security - 13995

At Garmin International in Olathe, Kansas, United States

Job Description

Overview

Make sure to apply with all the requested information, as laid out in the job overview below.

We are seeking a full-time Senior Manager Cyber Security in our Olathe, KS location. In this role, you will be responsible for leading and directing Cyber Operations including people, processes, and technologies globally across Garmin while working with key business stakeholders and serving as an escalation point for incident management and response issues.

Essential Functions

• Develop / define necessary cybersecurity policies, procedures, and advocate cyber best practices.
• Accountable for all elements of delivery, from defining vision and developing strategy and maturity roadmaps, through implementation, execution, and ongoing operations.
• Lead major cyber incidents including the development of investigation / scoping, containment, and remediation plans for resolving major cyber incidents, aligning resources to execute incident tasking, reporting findings to executive leadership, and managing response optics and tone.
• Develop a strategy to evaluate, design, or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment.
• Manage oversight of technical risk assessments, such as vulnerability scanning, penetration testing, risk reviews for new applications, and third-party risk assessments.
• Lead, manage, and monitor security projects and provide expert input for other IT projects.
• Develop security programs : manage / execute project deliverables; communicate to affected stakeholders / Garmin associates;

develop procedures, guidelines, and flow diagrams to be implemented on an ongoing basis; and develop tools or metrics to measure program implementation.

• Define / publish key performance indicators measuring the effectiveness of operational cybersecurity.
• Develop / refine security governance practices to ensure the implementation of executive management and the Board of Directors' information security agenda / strategy or objectives within Garmin.
• Collaborate with business / technology teams on enterprise objectives, initiatives, and information security risk to ensure robust security and compliance postures and exceed established standards.
• Advise / review Security Design and recommend security systems / controls in accordance with best practices.
• Ensure continuous improvement of policies, procedures, and technology (including automation) related to compliance to enable risk reduction, business enablement, and operational efficiencies.
• Orchestrate objectives / tasks across global teams to ensure integration / collaboration.
• Develop and lead cyber threat intelligence to identify / analyze long / short-term cyber threat actor groups, techniques, and tactics to make informed information security defenses / technology decisions.
• Provide management with weekly, monthly, and quarterly metrics for risk, performance, and colleague performance and develop relationships with external sources of Cybersecurity information.
• Escalate incidents to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis.
• Coordinate response, triage, and escalation of security events affecting the company's information assets and activities within the incident response leadership team.
• Perform post-incident review of processes / steps used to remediate an incident; implement improvements in the environment (such as technical controls) and / or incident response process.
• Define operational metrics, objectives, and key performance indicators to ensure operational excellence and help define and execute strategy for detection, investigation, and incident response.

Equal Opportunity Employer - minorities / females / veterans / individuals with disabilities / sexual orientation / gender identity

J-18808-Ljbffr