Under the direction of the Director, Information Security Operations, the Manager, Information Security Operations, will be responsible for understanding and responding to cyber threats to the enterprise. As a member of the Information Security department, this position will assume a lead role in cyber security monitoring, threat detection, event management, incident response and forensics.

The ideal candidate will be self-starting, creative, can think through a project from start to finish and have the vision to support the cyber security intelligence needs of the organization. This position requires knowledge and expertise with various methods, procedures and techniques of gathering information and producing reports to communicate the cyber threats to the enterprise. This position works in conjunction with various departments, including legal, IT, Casino Operations, and the Gaming Commission in addressing issues related to Information Security.

Essential Duties And Responsibilities

• Assess and cultivate long-term strategic goals for threat detection, event management, incident response, and risk assessment relating to the enterprise’s information security program.
• Collaborate with technical staff to develop security policies, standards and guidelines in support of the enterprise’s information security program objectives.
• Respond immediately to security-related incidents and provide a thorough post-event analysis.
• Create and execute strategies to improve the reliability and security of IT projects.
• Oversee and monitor routine information security operations.
• Spearhead vulnerability audits, forensic investigations and mitigation procedures for the enterprise.
• Identify and report violations of security policies or standards, recommending remediation activities.
• Institute organization-wide training in security awareness, protocols and procedures.
• Present relevant information security findings to a variety of audiences.
• Performs other duties as assigned to support the efficient operation of the department.
  
  

Supervisory Responsibilities

Carries out supervisory responsibilities in accordance with the organization’s policies and applicable laws. Responsibilities include interviewing, hiring and training employees; planning, assigning reviewing and directing work; evaluating and appraising performance; rewarding and disciplining employees; addressing complaints and resolving problems. Makes hiring decisions and designs individual development plans with succession planning in mind for all key roles.

Education, Experience And Qualifications

• Bachelor’s degree in information security, technology, statistics, mathematics, or related field required.
• Minimum three (3) years of experience in an information technology, information systems, or information security role required
• Minimum three (3) years of supervisory experience.
• Related, relevant, and/or direct experience may be considered in lieu of minimum educational requirements indicated above.
• Experience in overseeing and building a security team, ensuring they are trained and equipped to handle security incidents, and managing the incident response process is required.
• Working technical experience with vulnerability management, forensic, and security testing tools required.
• Hands-on experience with security technologies such as SIEM, IDS/IPS, firewalls, and data loss prevention required.
• Experience in developing information security policies, standards, baselines, and guidelines is required.
• Experience designing and conducting information security assessments to ensure controls compliance required.
• Experience developing and updating business continuity and disaster recovery protocols is required.
• Experience with Casino and Tribal government technology and security goals strongly preferred.
  
  

Knowledge, Skills And Abilities (ksa)

• Strong understanding of the cyber kill chain, intrusion analysis, and relevant network defense and intelligence frameworks.
• Knowledge of the principal methods, procedures, and techniques of gathering information and producing, reporting, and sharing intelligence.
• Demonstrable knowledge of applicable data privacy practices and laws, and experience adhering to those practices and laws.
  
  

LICENSES, CERTIFICATIONS AND REGISTRATIONS

• At the discretion of the San Manuel Tribal Gaming Commission, you may be required to obtain and maintain a gaming license.
• One or more current certifications in Systems, Networks, and Information Security such as Certified Information Systems Security Professional (CISSP), GIAC Security Leadership Certification (GSLC) or Certified in Risk and Information Systems Control (CRISC) required.
• No Driving Responsibilities: Role does not require a driver’s license or insurance.
  
  

Physical Requirements/ Working Conditions – Environment

The physical demands and working environment described here are representative of those that an employee encounters and must be met by an employee to successfully perform the essential functions of this job.

• Primary work environment is in a climate-controlled office setting.
• Work requires travel to attend meetings, trade shows, and conferences.
• Incumbents may be required to work evening, weekend and holiday shifts.
• Must be able to work in a fast-paced, high-demand environment.
• Strength sufficient to exert up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects and/or move up to 40 pounds occasionally.
• Sedentary work: involves sitting most of the time. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer.
• Physical activities that apply to the essential functions of the position are balancing, stooping, kneeling, crouching, reaching, pushing, pulling, lifting, grasping, talking, hearing, and repetitive motions.
• Hearing sufficient to hear conversational levels in person, via videoconference and over the telephone.
• Speech sufficient to make oneself heard and understood in person, in front of groups, in meetings, via videoconference and over the telephone.
• Visual acuity that meets the requirements of the position: The worker is required to have close visual acuity to perform an activity such as preparing and analyzing data and figures; transcribing; viewing a computer terminal; expansive reading and visual inspection of employees, visitors or facility.
• Mobility sufficient to safely move in an office environment, walk, stoop, bend and kneel, and enter, exit and operate a motor vehicle in the course of travel to promotional events, meetings, conferences, trade shows and San Manuel properties.
• Endurance sufficient to sit, walk and stand for extended periods, and maintain efficiency throughout the entire work shift and during extended work hours.
• The employee may be exposed to fumes or airborne particles including secondhand smoke.
  
  

Reasonable accommodation will be made in compliance with all applicable law.

As one of the largest private employers in the Inland Empire, San Manuel deeply cares about the future, growth and well-being of its employees. Join our team today!

R0014994