Cyber Security Assurance Manager

Salt Lake City, Utah, United States Full-time

Banjo is looking for Cyber Security Assurance Manager to join our team in Salt Lake City, UT!

The Cyber Security Assurance Manager will develop and implement a proactive Information Security assurance program for Banjo including implementing a cybersecurity strategy, INFOSEC policies and best practices for secure operation and protection of the company and partner data, information systems, corporate-managed devices, and all other cyber devices.

Most companies have a mission statement. Banjo has a mission — to save lives and reduce human suffering by ethically using A.I. to get everyone live, validated information, so they can make better decisions, faster.

Banjo is the world’s first Live-Time Intelligence platform that gives decision-makers the ability to KNOW INFORMATION NOW, to understand what is happening live, anywhere. With Banjo you will know more, so you can do more. Imagine how our world will change when decision-makers know exactly what is happening, where it is happening, the moment it happens.

RESPONSIBILITIES

  • Conduct risk assessments of the current data networks and architecture.
  • Develop security documentation, as required, and identifies at-risk data systems, threats, and vulnerabilities. 
  • Ensure data integrity and system security requirements are addressed in all phases of the information system lifecycle.  
  • Participate in planned system designs to ensure the implementation of appropriate system security policies, when required.  
  • Ensure implementation of a configuration management plan for software, hardware, and firmware, including maintaining documentation.  
  • Work to understand and mitigate any other INFOSEC risks present across the enterprise, and assure strict compliance with federal requirements, specifically the Criminal Justice Information System Standards (CJIS) and the National Institute of Standards (NIST) documents and best practices. 
  • Conduct Security Assessment and Authorization (SAA) activities on Company information systems, including assessing the implementation of security controls, identifying vulnerabilities or weaknesses in that implementation, developing a Plan of Action to include specific cybersecurity countermeasures and risk mitigation strategies, and implementing a continuous monitoring strategy to include audit log reviews, vulnerability assessments and further flaw remediation (including patch management).
  • Assist the SVP of Security and Compliance in the discovery of and response to insider threats involving malware incidents, data spillages, or other cybersecurity incidents.  
  • Ensure appropriate reporting, clean up and mitigation, and provides root cause and trend analysis and make recommendations for prevention and training.  
  • Monitor general and privileged user security awareness training, and prepares and deliver any additional security training or specialized security briefings targeting existing or emerging technologies, vulnerabilities, and prevention.

EDUCATION/EXPERIENCE

  • 2-5 years experience in the Cyber Security or INFOSEC industry
  • Broad cybersecurity and technology expertise in technical and procedural security controls, including but not limited to: network security architecture, endpoint security, data security, identity, access controls, and patch management, etc.
  • Deep understanding of cybersecurity risk/maturity practices and frameworks, including hands-on experience performing formal risk assessments
  • Conversant in security and privacy regulations and compliance (e.g., CJIS, GLBA, PCI-DSS, SOX, GDPR, CCPA)
  • Strong organizational skills with a successful track record of managing expectations, delivering results and meeting milestones and deadlines in a fast-paced environment
  • Exceptional communication skills: written, interpersonal, and in executive presentation
  • Familiarity with formal cybersecurity maturity frameworks such as the NIST CSF, FFIEC Cyber Assessment Tool (CAT), ISO 27000 Series is preferred
  • Experience assessing cyber risk in Agile, DevOps, Cloud (IaaS and SaaS) paradigms is a plus
  • Relevant professional certifications: CISA, CISM, CRISC, CISSP or equivalent are strongly desired

PERSONAL ATTRIBUTES OF THE SUCCESSFUL CANDIDATE

  • Excellent interpersonal skills with a high degree of empathy and emotional intelligence
  • Articulate individual, possessing solid verbal and written communication skills
  • Proven success delivering results individually and as part of a team in a fast-paced, demanding, high growth environment
  • Continuous improvement mentality with an ability to evaluate processes, seek out and implement internal or external best practices
  • a ‘can-do’ attitude
  • Great collaborator who is highly effective in a team-based environment
  • Creative problem solver with a demonstrated ability to ‘think outside the box’ when confronting challenges
  • Effective time management, organization and prioritizing skills; Ability to manage and prioritize multiple deliverables and to meet deadlines
  • High attention to detail, able to complete tasks quickly
  • Possesses an innate sense of urgency to deliver for the business while also effectively working collaboratively as part of a team

WORK ENVIRONMENT

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. The term "qualified individual with a disability" means an individual with a disability who, with or without reasonable accommodation, can perform the essential functions of the position. While performing the duties of this job, the employee is regularly required to communicate professionally in person, over the telephone, through email and other electronic means, move about the office, handle various types of media and equipment, and visually or otherwise identify, observe and assess. The employee is occasionally required to lift up to 10 pounds and is required to travel unless otherwise specified in the job description.

NOTICE

At Banjo, we value inclusion and embrace diversity. Banjo is an equal opportunity employer and makes employment decisions on the basis of merit. Banjo prohibits discrimination based on race, color, religion, sex, sexual identity, gender identity, marital status, veteran status, nationality, citizenship, age, disability, medical condition, pregnancy, or any other unlawful consideration. All your information will be kept confidential according to EEO guidelines.

The intent of this job description is to provide a representative and level of the types of duties and responsibilities that will be required of positions given this title and shall not be construed as a declaration of the total of the specific duties and responsibilities of any particular position. Employees may be directed to perform job-related tasks other than those specifically presented in this description. Candidates must pass a background check and drug test.