Information Security Manager

The Information Security Manager is responsible for managing and maintaining the confidentiality, integrity, and accessibility of the information assets of USAA Real Estate.  This role will guide the creation and maintenance of information security policies, standards, guidelines and procedures according to best practices in support of this directive. In addition, this role will research, manage and operate the systems utilized in the prevention, detection, and remediation of incidents affecting the USAA Real Estate information assets and associated systems.

Essential Duties:

Strategy, Planning, and Deployment

• Support and direct the selection, design, deployment, and configuration of all new IT / cyber security solutions and of any enhancements to existing security solutions in accordance with industry best practices and the organization’s security requirements.
• Manage the creation and maintenance of the organization’s InfoSec documents (policies, standards, baselines, guidelines and procedures).
• Support the maintenance of the organization’s Business Continuity Plan and Disaster Recovery Plan.
• Proven ability to direct and/or collaborate with third-party IT / cyber security resources.

Operational Management

• Monitor and respond to IT security log incidents and problematic infrastructure activity and provide on-going communication with management.
  
• Responsible for coordinating, reviewing, documenting, and resolving incidents or findings from vulnerability assessments, penetration tests, and security assessments.
• Support or perform regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.
• Engage in ongoing communications with industry peers in the IT / Cyber Security, Systems, and Networking forums to ensure organization-wide understanding of security threats and mitigating solutions.

At USAA Real Estate Company our employees enjoy generous benefits packages including comprehensive medical, dental and vision plans, 401k, USAA Membership eligibility, educational and professional designation assistance, business casual dress attire and much more!  

Qualified applicants must successfully complete a pre-employment background and drug screen.  The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.

USAA Real Estate is an Equal Opportunity and Affirmative Action Employer of Females, Minorities, Veterans and Disabled.

Minimum Qualifications

• Bachelors degree in the field of computer science or cyber security related disciplines.
• 3-5 years’ experience in cyber security architecture design, implementation, and maintenance.
• In-depth knowledge of networking and communication protocols and devices (routers, switches, firewalls) including a strong understanding of IP, TCP/IP, and other network administration protocols.
• Familiarity with Common Weakness Enumeration (CWE), Common Vulnerabilities and Exposures (CVE), Common Platform Enumeration (CPE), and Common Vulnerability Scoring System (CVSS).
• Familiarity with Vulnerability scanning tools.
• Familiarity with virtualization technologies, such as VMWare and VirtualBox.
• Basic knowledge of the NIST Cyber Security Framework.
• Proven ability to evaluate technical challenges with an innovative, pro-active approach to avoid incidents or problems.
  
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Good written and verbal communication (particularly with complex technical matters), organized thought processes, polite and respectful of others, adapts presentations to the audience, aware of confidential nature of information.
• Ability to conduct research into IT / cyber security issues and products as required.
• Works with little direction and supervision, timely completion of projects, makes time for unplanned assignments, adapts to changing priorities.
• Perceived fairness; tolerance; honesty; integrity; confidentiality; consistent in application of security policies and procedures.
• One or more of the following certifications is a plus:
• GIAC Security Essentials Certification
• ISACA Certified Information Security Manager
• CompTIA CySA
• (ISC)2 SSCP
• ISACA CISA
• Qualifications may warrant placement in different job level.

Physical Requirements:

• Regularly required to sit for extended periods of time; frequently required to stand, walk, and use business equipment daily such as computer, copier, fax, telephone, etc.; frequently required to reach overhead, bend, and lift objects of up to 25lbs.
• Ability to handle stress caused by multiple priorities, and other unforeseen situations associated with the organization.
• Eyesight and hearing must be correctable to standard level.