engineering.tomorrow.together.

At thyssenkrupp we have more than 158,000 employees in 79 countries and annual sales of € 41.5 billion. We are active in automotive engineering, logistics, plant technology, steel production, elevator manufacturing and much more. We work in large and small businesses all over the world - but we always work together. We have over 200 years experience in industry and the latest cutting-edge technology. We have a position that's right for you, that piques your interest, and that puts your skills to the test.

Manager - Information Security
thyssenkrupp Elevator Corp,
Location Alpharetta

We strive to make cities the best ever places to live, by advancing an industry that moves over 1 billion people each day. We are transforming our business by driving the industry norm and challenging ourselves, fostering a culture of internal and external collaboration, and building on our unique engineering capabilities to optimize existing and create new products and solutions for our customers that cater to real mobility needs. thyssenkrupp Elevator brings together the Group’s global activities in passenger transportation systems. With sales of 7.7 billion euros in fiscal 2016/2017 and customers in 150 countries, thyssenkrupp Elevator built its position as one of the world’s leading elevator companies from scratch in a mere 40 years’ time applying thyssenkrupp unique engineering capabilities. With more than 50,000 highly skilled employees, the company offers smart and innovative products and services designed to meet customers’ individual requirements. The portfolio includes passenger and freight elevators, escalators and moving walks, passenger boarding bridges, stair and platform lifts as well as tailored service solutions for all products. Over 1000 locations around the world provide an extensive sales and service network to guarantee closeness to customers.
 
thyssenkrupp Elevator Americas is the largest producer of elevators in the Americas, with more than 15,500 employees, in over 230 branch and service locations. thyssenkrupp Elevator Americas oversees all business for the operations in the United States, Canada, Central and South America. It is a subsidiary of thyssenkrupp Elevator AG.

Your responsibilities

thyssenkrupp Elevator Americas is currently seeking an experienced  Manager - Information in Alpharetta, GA. The Information Security Manager performs a wide variety of duties in support of technical and global security services using defined and established procedures. This role will drive the architecting, designing, implementation, deployment, and administration of all security technologies. The incumbent will also be responsible for the day to day operations of all security technologies, development and enforcement of security practices, and function as the point of contact for all security related incidences. The candidate will be vendor agnostic and well versed in methodologies as not all customers use the same solutions.

The Information Security Manager is responsible for Security platform engineering and operation - the testing, engineering and development of firewalls, IPS, content filter platforms and all other security solutions. They will also be responsible for monitoring and the analysis of security alerts and logs as well as driving all remediation and mitigation actions in accordance with the established security practices. 

Areas of focus will be a combination of day-to-day security operations and strategic architecture of tkE AMS IT environments.

  • Responsible for all aspects of network security including architecting, implementation, and administration of firewalls, IDS/IPS, network device hardening, enterprise endpoint security, system hardening, and managing strong authentication mechanisms
  • Performs computer and/or network security vulnerability assessments to identify, evaluate and mitigate security risks, threats and vulnerabilities
  • Maintaining security compliance operations and infrastructure
  • Understanding of industry best practices for security architecture frameworks, tools, standards and guidelines
  • Able to assess and validate compliance to acknowledged security standards through routine self-audits
  • Able to test and report on new security technologies
  • Develops technical and programmatic assessments
  • Evaluate integration initiatives and provide technical support to assess security policies, standards and guidelines
  • Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications
  • Performs product evaluations, recommends and implements products/services for network security
  • Monitors security audits and intrusion detection system logs for system and network anomalies across all layers and defines actionable items through correlation of events
  • Manages, develops and implements MDM environment
  • Provides enforcement of security directives, standards, plans and procedures
  • Conveys, documents, and remediates security incidences effectively and timely
  • Security Information and Event Manager design and development
  • Plan, control and comply with the budget of the area of responsibility; in case of foreseeable differences immediate information and initiation of countermeasures
  • Secure and develop professional know-how; plan and coordinate best-practice exchange

 

Your profile

  • BS in Information Systems, Computer Science or related discipline
  • 8-10 years of combined IT and Security work experience with a broad exposure to infrastructure/network, host, data and/or application security, and multi-platform environments
  • 5 or more years of experience designing solutions for large-scale data center environments
  • 5 years of strong experience in Firewall Design and Administration
  • Demonstrate working knowledge of Cisco Routers/Switches/VPN
  • Demonstrate working knowledge of IDS/IPS management
  • Advanced or expert level knowledge and understanding of Security Infrastructure Architecture
  • Expert understanding of defense-in-depth designs and security layers
  • Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and ACL’s
  • Experience working with internet, web, application and network security techniques
  • Experience working with relevant operating system security (Windows, Linux, etc.)
  • Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies
  • SIEM Design and Administration

Preferred Requirements

  • Understanding and application of information security principles
  • Understanding of Industry Standard Security Frameworks (NIST, COBIT, ISO27001, ITIL)
  • Security Industry Certifications a plus but not necessary, 7-10 years dedicated Info Sec Professional experience accepted (CISSP, CEH, CISM, SANS, etc.)
  • Consulting experience a plus
  • VoIP Security/Vulnerability Analysis
  • ISMS Development and Implementation
  • Employee must be able to work standard North American hours 0800 to 1700 Eastern Standard Time zone
  • Employee must speak and write the English language fluently
  • Experience with German organizations desired, but not required
  • Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions
About thyssenkrupp
At thyssenkrupp we have more than 156,000 employees in nearly 80 countries and annual sales of €39 billion. We are active in automotive engineering, logistics, plant technology, steel production, elevator manufacturing and much more. We work in large and small businesses all around the world – but we always work together. We have over 200 years of experience in industry and the latest cutting-edge technology. We have a position that‘s right for you, that piques your interest, and that puts your skills to the test.

We strive to make cities the best ever places to live, by advancing an industry that moves over 1 billion people each day. We are transforming our business by driving the industry norm and challenging ourselves, fostering a culture of internal and external collaboration, and building on our unique engineering capabilities to optimize existing and create new products and solutions for our customers that cater to real mobility needs. thyssenkrupp Elevator brings together the Group’s global activities in passenger transportation systems. With sales of 7.7 billion euros in fiscal 2016/2017 and customers in 150 countries, thyssenkrupp Elevator built its position as one of the world’s leading elevator companies from scratch in a mere 40 years’ time applying thyssenkrupp unique engineering capabilities. With more than 50,000 highly skilled employees, the company offers smart and innovative products and services designed to meet customers’ individual requirements. The portfolio includes passenger and freight elevators, escalators and moving walks, passenger boarding bridges, stair and platform lifts as well as tailored service solutions for all products. Over 1000 locations around the world provide an extensive sales and service network to guarantee closeness to customers.
 
thyssenkrupp Elevator Americas is the largest producer of elevators in the Americas, with more than 15,500 employees, in over 230 branch and service locations. thyssenkrupp Elevator Americas oversees all business for the operations in the United States, Canada, Central and South America. It is a subsidiary of thyssenkrupp Elevator AG.

Your responsibilities

thyssenkrupp Elevator Americas is currently seeking an experienced  Manager - Information in Alpharetta, GA. The Information Security Manager performs a wide variety of duties in support of technical and global security services using defined and established procedures. This role will drive the architecting, designing, implementation, deployment, and administration of all security technologies. The incumbent will also be responsible for the day to day operations of all security technologies, development and enforcement of security practices, and function as the point of contact for all security related incidences. The candidate will be vendor agnostic and well versed in methodologies as not all customers use the same solutions.

The Information Security Manager is responsible for Security platform engineering and operation - the testing, engineering and development of firewalls, IPS, content filter platforms and all other security solutions. They will also be responsible for monitoring and the analysis of security alerts and logs as well as driving all remediation and mitigation actions in accordance with the established security practices. 

Areas of focus will be a combination of day-to-day security operations and strategic architecture of tkE AMS IT environments.

  • Responsible for all aspects of network security including architecting, implementation, and administration of firewalls, IDS/IPS, network device hardening, enterprise endpoint security, system hardening, and managing strong authentication mechanisms
  • Performs computer and/or network security vulnerability assessments to identify, evaluate and mitigate security risks, threats and vulnerabilities
  • Maintaining security compliance operations and infrastructure
  • Understanding of industry best practices for security architecture frameworks, tools, standards and guidelines
  • Able to assess and validate compliance to acknowledged security standards through routine self-audits
  • Able to test and report on new security technologies
  • Develops technical and programmatic assessments
  • Evaluate integration initiatives and provide technical support to assess security policies, standards and guidelines
  • Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications
  • Performs product evaluations, recommends and implements products/services for network security
  • Monitors security audits and intrusion detection system logs for system and network anomalies across all layers and defines actionable items through correlation of events
  • Manages, develops and implements MDM environment
  • Provides enforcement of security directives, standards, plans and procedures
  • Conveys, documents, and remediates security incidences effectively and timely
  • Security Information and Event Manager design and development
  • Plan, control and comply with the budget of the area of responsibility; in case of foreseeable differences immediate information and initiation of countermeasures
  • Secure and develop professional know-how; plan and coordinate best-practice exchange

 

Your profile
  • BS in Information Systems, Computer Science or related discipline
  • 8-10 years of combined IT and Security work experience with a broad exposure to infrastructure/network, host, data and/or application security, and multi-platform environments
  • 5 or more years of experience designing solutions for large-scale data center environments
  • 5 years of strong experience in Firewall Design and Administration
  • Demonstrate working knowledge of Cisco Routers/Switches/VPN
  • Demonstrate working knowledge of IDS/IPS management
  • Advanced or expert level knowledge and understanding of Security Infrastructure Architecture
  • Expert understanding of defense-in-depth designs and security layers
  • Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and ACL’s
  • Experience working with internet, web, application and network security techniques
  • Experience working with relevant operating system security (Windows, Linux, etc.)
  • Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies
  • SIEM Design and Administration

Preferred Requirements

  • Understanding and application of information security principles
  • Understanding of Industry Standard Security Frameworks (NIST, COBIT, ISO27001, ITIL)
  • Security Industry Certifications a plus but not necessary, 7-10 years dedicated Info Sec Professional experience accepted (CISSP, CEH, CISM, SANS, etc.)
  • Consulting experience a plus
  • VoIP Security/Vulnerability Analysis
  • ISMS Development and Implementation
  • Employee must be able to work standard North American hours 0800 to 1700 Eastern Standard Time zone
  • Employee must speak and write the English language fluently
  • Experience with German organizations desired, but not required
  • Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions