Cyber Security Manager

POSITION SUMMARY:

Lead and direct multiple cyber security teams including people, processes and technology. Establish and execute technology strategy and vision for global Garmin cyber security programs. Work with key business stakeholders in the development, application, and enforcement of Garmin’s cyber security focus. Develop and define necessary cybersecurity policies, procedures, and advocate best practices. Accountable for all elements of delivery, from defining vision and developing strategy and maturity roadmaps, through implementation, execution, and ongoing operations.

ESSENTIAL FUNCTIONS:

• Work closely with Director of Cyber Security, as well as infrastructure and Cyber Security management globally to ensure security solution, process, and approach consistency
• Lead, manage, and monitor security projects and provide expert input for other IT projects
• Leverage sound project management methodologies to enable project delivery
• Help prioritize work to ensure appropriate order of execution
• Define operational metrics, objectives, and key performance indicators to ensure operational excellence
• Ensure continuous improvement of policies, procedures and technology (including automation) to enable risk reduction, business enablement and operational efficiencies
• Sponsor security architectural efforts, bring balance and influence architectural decisions, business requirements, and security vision
• Orchestrate objectives and tasks across global teams to ensure integration and collaboration
• Communicate effectively with stakeholders and associates, technical and non-technical audiences
• Create trust and influence throughout the organization, including when not in direct control and/or authority
• Advocate for the customer to the Cyber Security team and ensure the Cyber Security team understands appropriate criticality of solutions and situations
• Collaborate with business/technology teams on enterprise objectives, initiatives and information security risk to ensure robust security
• Escalate incidents to management in a timely manner with appropriate information regarding risk, action times, and root cause analysis.
• Manage budgets, roadmaps, and delivering technically sound and business enabling solutions

Manifest passion, skill and drive to take on responsibilities in one/both of the areas below:

For Cyber Security Engineering:

• Develop strategy to evaluate, design, or plan the implementation of new or updated information security hardware or software, and analyzes its impact on the existing environment
• Advise/ review Security Design and recommend security systems/ controls in accordance with best practices
• Coordinate response, triage, and escalation of business impacting incidents caused by cyber security technology failure
• Strong grasp of information technology
• Experienced in the deployment, maintenance, and procurement of cyber technology.

For Cyber Security Operations:

• Manage incident detection, investigation and response
• Develop and lead cyber threat intelligence to identify and analyze cyber threat actor groups, techniques, and tactics to make informed information security defenses/technology decisions.
• Manage the oversight of technical risk assessments, such as vulnerability scanning, penetration testing, risk reviews for new applications

OTHER RESPONSIBILITIES:

• Management of multiple security projects at one time
• Detailed work in documenting and understanding current security controls, and proposing future security controls
• Assess and adapt existing operational programs and develop capabilities to ensure ongoing success
• Build and maintain high performing team(s) by recruiting, developing, and retaining outstanding talent.
• Promote team member engagement and effectiveness by providing constructive feedback and promoting personal development, including writing and conducting annual performance appraisals.
• Develop and manage team and individual performance and capacity metrics to identify successful operations or areas needing improvement, ensuring all organizational objectives are met.
• Demonstrate ongoing personal development, professional growth, and continuous education.

EDUCATION EXPERIENCE AND SKILLS REQUIRED:

• Bachelor of Science in Engineering, Computer Science or Management Information Systems AND a minimum of 10 years relevant experience including 5 years of leadership experience as a Cyber Security professional.
• Fluency in English is required
• Knowledge of analysis, design, and configuration of complex IT applications, local and wide area networks, heterogeneous server systems, and regulatory and security requirements
• Demonstrated experience successfully coordinating teams and multiple projects
• Experience with formal software systems change control techniques
• Solid understanding of general security concerns in areas such as servers, network topology/ access controls, endpoint security, change/problem management, and Cyber Security monitoring
• Ability to work proactively and effectively with minimal supervision
• Demonstrated proficient and effective leadership skills with the ability to lead a team
• Demonstrated strong and effective verbal, written, and interpersonal communication skills
• Team-oriented, possess a positive attitude and work well with others
• Demonstrates proficient organizational, problem solving and project management abilities
• Able to communicate complex issues in both oral and written form in terms clearly understood by highly technical and non-technical audiences