Responsibilities: 
Overall responsibility will be to handle the security architecture, design, and improvements of our Crown manufacturing locations along with corporate environments by coordinating effective information security practices and providing a safe working environment for employees and third parties.
•    Implement strategies to identify, assess, prevent, protect, and mitigate information security risks, threats, and vulnerabilities to safeguard people, assets, products, and property. 
•    Develop and implement measures, tools, and technology to monitor compliance with company security policies and procedures, laws and regulations. 
•    Monitor and stay up to date with security-related proven practices and technology. 
•    Assess, identify, and develop security solutions for OT environments as it pertains to our global manufacturing environment.  Assessments include security frameworks, existing security measures and alignment with best practices. 
•    In addition, you’ll have the opportunity perform testing against ICS/OT devices, networks and security control mechanisms.
•    Review current system security measures and recommend and implement enhancements
•    Conducting regular system tests and ensuring continuous monitoring of network security
•    Developing project timelines for ongoing system upgrades

Job Requirements

What We are Looking for:

Crown is looking for an enthusiastic candidate who has an interest in technology, in combination with having knowledge of IT and OT operations in a manufacturing environment. Importantly, you should also have experience of reviewing cyber security policies, control implementation, mitigation strategies, or cyber security threat analysis. 

•    Bachelor’s Degree in Information Systems, Computer Science, Engineering, or other related fields required  
•    Active security certifications preferred:  CISM, CISSP, CCNA, CCNP or other similar certifications
•    Operational, technical, or product management experience in one or more of the following key disciplines: SIEM, Data Protection, Network Security, End Point Security, Forensics, Fraud, or Threat Intelligence
•    Knowledge of or work experience in implementing projects that follow an Information Security framework such as NIST Cyber Security Framework, ISO 27001, 27002.  
•    Working knowledge of MITRE ATT&CK, or Lockheed Kill Chain methodology
•    Knowledge of Security Standards and how they may apply to IT and OT environments
•    Experience managing project delivery of cybersecurity projects
•    Basic working knowledge / experience working with Security Information Event Management (SIEM), Continuous Monitoring, Intrusion Detection/Prevention Systems (IDPS/PS), Network, Incident Response, Endpoint Security Systems, Threat Modeling, Firewalls, Segmentation, MFA, IDS, IPS, etc. 

Core Competencies:
•    Natural passion for security and strong drive to see both projects and investigations to completion
•    Proven leadership skills including effective oral and written communication, performance management, issue resolution, negotiation, motivating and influencing team members, forecasting, and planning
•    Excellent verbal, written, and presentation skills
•    High level of personal integrity, and the ability to professionally handle confidential matters
•    Have strong written and oral communication skills with the ability to explain technical ideas to non-technical individuals at any level
•    Functional technical knowledge of infrastructure, networking, architecture, security, and applications 
•    Understanding of budget operations, cycles, processes
•    Meet project implementation targets 
•    Highly organized and task oriented.
•    Advanced problem solving and troubleshooting skills.
•    Ability to prioritize and assign tasks.