Our Information Security Department is seeking a new Info Sec Manager of Operations & Engineering to join their team!

At OceanFirst Bank, each one of our employees plays an important role in fulfilling the mission and taking responsibility to execute daily tasks in alignment with our core values. Together we foster an environment of respect, professionalism and diversity that makes OceanFirst a great place to work and do business.

Great benefits include: on-site fitness facility, hybrid schedule after initial onboarding has been completed (3 days in office, 2 days remote), employee perks & discount programs, tuition assistance, incentive compensation program, and more! Apply today to #BecomeOceanFirst and make an impact in the local community!

PRIMARY PURPOSE:

The Information Security Manager is primarily responsible for providing operational and tactical leadership for the Security Operations Center (SOC) as well as ensuring the engineering of all Information Technology products and services are performed correctly. This role contributes to OceanFirst’s information security strategy and roadmap.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

1. Manages a team of associates and outsourced SOC analysts to monitor and respond to security events 24x7x365.

2. Supports automation and orchestration to maximize team talent and reduce routine tasks.

3. Manages security event investigations, partnering with other departments as needed.

4. Evaluates and update SOC policies and procedures as appropriate

5. Develops metrics and scorecards to measure risk to the organization, as well as effectiveness and efficiency of SOC associates.

6. Manages security engineering to improve tool usage and workflow, as well as SOC Analysts to mature monitoring and response capabilities.

7. Plans and executes regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to measure preparedness.

8. Conducts independent verification and validation testing of company networks and sensitive programs through internal team resources and independent consultant engagements.

9. Leads the team to implement secure enterprise systems and identifies issues that could compromise data integrity or security.

10. Familiarity of current and existing cyber threats, adversarial tactics, and related mitigation techniques.

11. Provides periodic training to Bank employees on information security topics.

12. Participates in the company’s change management program

13. Manage career development for a team of associates, including training and mentoring, conducting performance reviews and exhibiting behaviors to be modeled by team members.

14. Acts as a change agent and drives the department and business forward using effective management, analysis and strategic skills.

15. Leads security-related projects from inception to successful completion and coaches technology staff on appropriate security protocols and needs as they implement new technology into the organization.

16. Openly supports the organization, the management team and executive leadership team, to include during times of adversity.

17. Utilizes open communication and managerial courage to ensure the standards, expectations and goals of the organization are respected and upheld.

18. Assumes responsibility for other duties as required or assigned.

JOB SPECIFICATIONS:

Knowledge, Skills & Abilities

• Working knowledge of security information and event management (SIEM) systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), data loss prevention (DLP) and other network and system monitoring tools.
• Proven investigative skills using formal chain-of-custody methods, forensic tools and best practices.
• Demonstrates solid organizational skills and the ability to multi-task, prioritize workload in a high-pressure environment and delegate responsibilities.
• Leverages strategic and tactical thinking.
• Proven ability to successfully partner with internal clients and vendors to align strategy with deliverables, identify business challenges and develop alternatives to mitigate.
• Strong service management and service delivery orientation.
• Strong written, oral, and interpersonal communication skills.
• Demonstrates excellent judgment and the ability to make quick decisions and think outside the box when working with complex situations.
• Is forward thinking and possesses business acumen.
• Excellence in communicating business risk from cybersecurity issues.
• Highly effective communicator with ability to influence business units.
• Analytical and problem-solving mindset.
• Possesses a high level of integrity, trustworthiness and confidence, and represents the company and its management team at the highest level of professionalism.
• Works effectively with a variety of personalities and can adapt his/her approach to effectively reach and develop his/her team. Uses this skill as well as his/her functional knowledge to both earn and maintain a high level of credibility with the team.
• Proven leadership skills with the ability to effectively manage and develop staff through knowledge transfer and leading by example
• Ability to present ideas in user-friendly language to a variety of constituent audiences.
• Proven ability to work within a changing environment and lead the implementation of change.
• Ability to assess the impact or potential impact of change management initiatives of various sizes and degrees of complexities on business financials and performance.

Experience & Education

• Bachelor’s degree in computer science, information assurance, MIS or related field, or equivalent.
• Master’s degree, MBA or advanced degree in information assurance/technology not required but preferred.
• Industry recognized Infosec certifications such as CompTIA Security+, CEH: Certified Ethical Hacker, GSEC: SANS GIAC Security Essentials, CISSP: Certified Information Systems Security Professional, CISM: Certified Information Security Manager, strongly desired.
• 5-7 years of related experience required.

Internal and External Contacts

• Extensive external contact with equipment and service suppliers.
• Internal contacts are with all department managers, senior management and directors on an ongoing basis.

Working Conditions/Physical Requirements
Office environment. Ability to operate computer. Ability to communicate in order to exchange simple to complex information with individuals and groups. Ability to travel throughout Bank footprint

Equal Opportunity Employer
Minorities/Females/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity