IT Security Operations Manager

The Woodlands, Texas (US-TX) United States (US) 

Nexeo Plastics is a leading global thermoplastic resins distributor, representing quality products from world-class suppliers, and serving a diverse customer base across North America, Latin America, Europe, Middle East, Africa, and Asia.  From material selection to supply chain and inventory solutions, we go beyond traditional logistics to provide value-added services across many industries, including automotive, healthcare, packaging, wire and cable, 3D printing and more.  Our people, our passion, our global reach, and our technology platform allow us to create unique ways to reduce complexity in your business, identify efficiencies, and unlock value for suppliers and customers.

Nexeo Plastics facilities are ISO 9001 certified. We diligently observe a commitment to quality in all of our practices and adhere to a defined quality policy.

GPD Companies, Inc. is a holding company formed by One Rock Capital Partners, LLC, with the intent to create a leading value-added global plastics distribution group. Its operational entities currently include Nexeo Plastics and Distrupol.

Nexeo Plastics facilities are ISO 9001 certified. We diligently observe a commitment to quality in all our practices and adhere to a defined quality policy.

Basic Purpose

The IT Security Operations Manager will lead our global security operations team and ensure the ongoing protection of our organization's digital assets and data. The ideal candidate will have a deep understanding of cybersecurity best practices, incident response, threat detection, and team management. The IT Security Operations Manager will play a crucial role in safeguarding our systems, networks, and sensitive information from potential threats and attacks.

Position Responsibilities

• Lead and manage the IT security operations team, providing guidance, mentorship, and support to ensure effective execution of security initiatives.
• Develop and implement comprehensive security operations strategies, policies, and procedures to proactively identify and address potential security threats.
• Oversee the design, implementation, and maintenance of security controls, tools, and technologies to protect the organization's IT infrastructure and data.
• Monitor security alerts, incidents, and vulnerabilities to respond promptly and effectively to potential security breaches or incidents.
• Collaborate with cross-functional teams to ensure security measures are integrated into all technology projects and initiatives, including application development, infrastructure upgrades, and cloud migration.
• Conduct regular security assessments, penetration tests, and vulnerability assessments to identify and address potential weaknesses in the organization's systems and networks.
• Stay up to date with the latest cybersecurity trends, threats, and best practices to continually enhance the organization's security posture.
• Lead incident response efforts, coordinating with relevant stakeholders to contain and mitigate the impact of security incidents.
• Prepare and deliver regular reports on the organization's security posture, incident response activities, and ongoing security initiatives to senior management and stakeholders.
• Collaborate with compliance teams to ensure the organization meets relevant regulatory and industry-specific security requirements.
• Manage relationships with third-party security vendors and service providers to leverage external expertise and tools as needed.

Minimum Requirements (Education, Experience & Skills)

• Minimum 10-year experience in network and cyber security operations with a specific focus on managing a Security Operations Center (SOC) and Security Threat Hunting
• A minimum of four recognized cyber security certifications including, Licensed Penetration Tester (LPT), Electronic Certified Security Analyst (ECSA), Computer Hacking Forensics Investigator (CHFI), Certified Ethical Hacker (CEH), and Certified Information Systems Security Professional (CISSP). Additional relevant certifications are a big plus.
• Proven experience in IT security operations, with a track record of managing and leading security teams effectively.
• In-depth knowledge of cybersecurity principles, technologies, and best practices.
• Familiarity with security frameworks such as NIST, ISO 27001, and CIS Controls.
• Strong experience in incident response, threat detection, and security incident management.
• Proficiency in using security tools and technologies such as SIEM, IDS/IPS, EDR, and vulnerability management tools.
• Demonstrated experience in proactive threat hunting to identify and mitigate advanced threats and vulnerabilities.
• Excellent communication and interpersonal skills to collaborate effectively with technical and non-technical stakeholders.
• Strong analytical and problem-solving abilities with a keen attention to detail.
• Ability to adapt to a fast-paced and evolving technological landscape.
• Experience in managing security in cloud environments (e.g., AWS, Azure) is a plus.

By including the experience in proactive threat hunting, the job description highlights the candidate's ability to not only respond to security incidents but also proactively seek out potential threats and vulnerabilities to prevent them from causing harm to the organization's systems and data.

Education/Experience/Skills:

• Highschool Diploma or Bachelor’s Degree in Information Systems.
• Must have at least 10 years general IT experience with at least 7 years IT Security & Identity Management experience.
• Must have SIEM experience to include SPLUNK and Alien Vault.
• Must be proficient with common scripting languages such as Powershell, VBScript, Pearl & Javascript.
• Must be proficient with Windows operating systems, Active Directory, Kernel vulnerabilities, etc.
• Must have experience managing and supporting ID management and Multifactor Authentication (MFA) systems specifically Okta.

Competencies:

• Customer Focus
• Collaboration
• Interpersonal Savvy
• Business Insight
• Technical Savvy
• Planning & Alignment
• Directing Work
• Optimizes Work Processes
• Situational Adaptability
• Manages Ambiguity
• Agile Methodology

Nexeo Plastics is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.  Additionally, Nexeo Plastics participates in the E-Verify program to ensure employment eligibility of newly hired employees where required.