Plans, designs, manages, and implements programs, networks, and systems that protects Bemis’ information systems and computer networks from cyber-attacks, intrusions, malware, and several types of data breaches; and assures the networks are kept running smoothly to protect all sensitive data and prevent loss of time and money.

• Identifies current security threats and designs a security incident response program with a documented plan of action to take if a security incident occurs.
• Remediates security incidents and works with upper management to prepare for potential business repercussions.
• Leads monitoring of operations and infrastructure; runs risk assessments throughout the organization; designs and maintains security tools and technology that include firewalls, data protection controls, patching, encryption, vulnerability scanning, and penetration testing; and ensures proper deployment, configuration, and function of the security systems.
• Keeps track of where a network’s potential vulnerabilities lie, maintains knowledge of current methods cyber criminals use to infiltrate computer and information systems, and utilizes expertise and knowledge on cyber security protection, detection, response, and recovery to avert these efforts.
• Develops and audits policies and controls constantly, monitors systems for security gaps, designs effective solutions, and provide reports to management and executive staff.
• Partners with Infrastructure and Systems managers in creating a cohesive IS team.
• Provides direction on which emerging cyber security technologies should be incorporated into infrastructure and security products and services to deliver overall IT cyber security strategy successfully.
• Develops and controls the annual cyber security budget to ensure that it is consistent with the overall strategic objectives of IT and the enterprise and is within the plan.
• Contribute to the design and establishment of IT policies and procedures. Develop and maintain IT internal policies, procedures, and standards to manage IT operations systems and activity.
• Work with IT applications and infrastructure teams to continue improving a robust security program and initiate security projects that address identified risks and business security requirements.
• Lead investment in threat detection and response systems used as a part of the overall security operations.
• Lead technical incident response efforts from identification to post-mortem including conducting a Tabletop Exercise.
  Plans and implements security measures to protect computer systems, networks, and data from loss and service interruptions.
• Analyzes and documents security risks, breaches, and other cyber security incidents and the damage they cause.
  Develops and implements a network disaster recovery plan and oversees the monitoring of the computer networks for security issues.
• Researches and keeps current on the latest IT intelligence technologies, trends, and security standards. Trains staff on network and IT security procedures.
• Other duties as assigned.

Job Qualification Required, Skills & Abilities:

• Excellent analytical and problem-solving skills.
• Excellent verbal and written communication skills.
• Self-motivated with strong attention to detail.
• Demonstrated problem solving.
• Strong organizational and planning skills.
• Analytical skills and attention to detail.
• Self-motivated, proactive, and highly committed to continuous improvement.
• Ability to communicate effectively both orally and in writing.
• Ability to manage multiple projects and be flexible to changing business needs.

Required Education & Experience:

• Bachelor’s Degree in Computer Science, Engineering required or equivalent experience.
• 5+ years of experience with leading cybersecurity and cloud-based application security initiatives and projects.
• 5+ years of experience with Single Sign On providers; Privileged Access Management experience a plus.
• 5+ years of experience with cyber security incident response processes, mitigation, working with SOC managed services, cloud security, and vulnerability management.
• 5+ years of experience with MS O365 suite, Microsoft Active Directory, and related security solutions.
• Familiarity with NIST Cybersecurity framework.
• Understanding of Windows Domain and networking security principles.
• Experience in Manufacturing environment preferred.

Work Environment & Physical Demands:

• Indoor office setting, controlled temperature.
• 40+ hours per week.
• Minimal lifting, up to 20lbs. Minimal bending and reaching.
• May be required to enter manufacturing operations where steel toe shoe, protective eye wear and hearing protection is required.