Manager, IT Security (Security Engineering)

Wolters Kluwer Global Business Services (GBS) is designed to provide services to the business units in the areas of technology, sourcing, procurement, legal, finance, and human resources. These global centers promote team collaboration using best practices around a specific focus area to drive results and enhance operational efficiencies. There is a constant endeavor to benchmark against best-in-class industry standards to improve the quality of deliverables, increase cost savings, enhance productivity and reduce time to market for products and applications.

We have an amazing opportunity to recruit and retain only the best and brightest for an IT Security Manager (Security Engineer) , available within our Global Business Services division! This position has been created due to growth! The IT Security Manager (Security Engineer) is a Sr. Security Lead in the WK Global Information Security (GIS) organization. They will participate in architecture reviews, service design and maintenance and will provide technical depth needed to create and maintain architecture design and services to ensure that security is include by design. This person will directly contribute to the overall global enterprise security architecture and help lead the security vision and strategy. This will include preparing and/or enhancing security standards, policies, controls, and procedures.

Responsibilities:

• Contribute to the success of application modernization projects by supporting multiple customers with environment support and monitoring of the cloud environments (e.g. AWS, GCP) and their systems
• Provide leadership regarding cloud architecture and the implementation of infrastructure to support the modernization of systems
• Establish and maintain cloud architecture, tools, and processes for migrating legacy applications to modern architectures including the use of containers
• Determine security requirements by evaluating business strategies and requirements
• Participate as a GIS Security expert in architecture reviews and other meetings
• Participate as a GIS Security expert in service requirement workshops, design and maintenance meetings.
• Research information security standards
• Interpret and analyze corporate security standards and baselines
• Developing architecture patterns, standards and reference architectures for technology platforms by ensuring security policies and standards are correctly aligned, adhered with and have clear tracking.
• Conduct system security and vulnerability analyses and risk assessments
• Plan security systems by evaluating security technologies, develop requirements, while adhering to industry standards
• Assist with PoCs and provide architecture oversite for Security
• Ensure architecture patterns, enterprise standards and broader governance frameworks are adhered to

Bachelors degree or higher in Information Systems Management, Information Technology, Computer Science, Business, Management, Engineering, or another related discipline

• Certification in public cloud technology from AWS, Azure, or Google Cloud a plus
• Nine (9) years of professional IT experience in Security and working with Windows Server or Linux environments
• Experience applying networking principles for system development or support
• Experience applying security standards meeting enterprise standards
• Knowledge of containers / Kubernetes
• Possess and utilize excellent oral and written communication skills
• Experience public cloud (Preferred Azure/AWS)
• Experience in the cloud security components Encryption, Key Vaults, Web application firewalls, Event management, Azure AD, AWS security Hub, Azure security center, Multi factor authentication, Microsoft defender suite (Azure ATP)

Preferred Skills & Qualifications:

• Solid understanding of network and security protocols, cryptography, authentication and authorization
• Solid understanding of security controls for both legacy and cloud environments
• Familiarity with overlays and underlays in both Cloud and Hypervizor based environments
• Experience in developing requirements for local, wide and virtual networks
• Experience in developing requirements for both principle of least privilege and least functionality
• In depth knowledge of Risk Assessment process, and other risk management skills
• Experience in reviewing current system security measures and recommending enhancements
• Experience in designing controls for three-tier web architectures (eCommerce experience a plus)
• Experience implementing or supporting Security Center, Amazon Hub, or ELK stack and interfaces with other monitoring systems
• Experience in standards and controls definition
• Good understanding of industry standards (e.g. NIST) and regulations
• Management experience
• Preferred certifications: CISSP, CRISC, CISM, CISSP, ITIL

Compensation:

Target salary range for New York: $109,750 - $153,800

EQUAL EMPLOYMENT OPPORTUNITY Wolters Kluwer U. S. Corporation and all of its subsidiaries, divisions and customer/business units is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.