We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Patterson-UTI jobs

Cybersecurity Compliance Manager

Patterson-UTI
United States, Texas, Houston
10713 West Sam Houston Parkway North (Show on map)
Jan 28, 2025

Brief Description:

The Cyber Security Compliance Manager will report to the Director of Information Technology Cyber Security and will be responsible for the development, management, monitoring, and auditing of security policies and procedures in accordance with industry regulations, standards, and laws. Their primary objective is to ensure that the organization complies with all applicable security requirements to mitigate the risk of cyber-attacks and data breaches. This entails the creation and continuous maintenance of policies, standards, guidelines, and procedures, conducting audits, and staying informed about emerging security trends, threats, and regulations.

Detailed Description:




  • Participate in business continuity activities as needed.
  • Maintain strong knowledge of the newest Cybersecurity threats within dynamically changing technical environments.
  • Lead IT Security governance as part of Patterson-UTI's goal of maturing toward conformance with NIST CSF (National Institute of Standards and Technology's Cybersecurity Framework)
  • Write and maintain policies, standards, procedures, and other documents, as necessary, associated with IT Security governance and compliance requirements
  • Conducting outreach to parties affected by changes brought about by compliance efforts.
  • Participate in strategic discussions to determine the direction of future governance efforts.
  • Work with internal and external auditors to ensure they receive accurate information
  • Manage Security Awareness Training program to ensure that users receive effective education in critical topics.
  • Evaluate the cybersecurity infrastructure of potential corporate M&A subjects and advise management on status and necessary changes.
  • Manage digital content labeling program and work toward company-wide compliance.
  • Evaluate existing and proposed security architectures and designs to determine their adequacy in relation to best practices and operational requirements.
  • Identify and prioritize critical business functions in collaboration with organizational stakeholders.
  • Coordinate security testing operations, including those conducted by internal personnel and by external contractors including tabletop exercises and penetration testing.
  • Perform security reviews and risk assessments, identify gaps in security architecture (including those related to external entities), and develop appropriate security risk management plans.
  • Ensure that configuration and use of acquired, developed, and modified systems are consistent with established cybersecurity architecture guidelines.
  • Analyze and review cybersecurity tool efficacy providing metrics to show value in operational expenditures for stakeholders, executive leadership, and the board of directors.
  • Analyze network and device configurations, identify potential enhancements, and develop deployment plans collaboratively with operations.
  • Research, plan, and assist in implementing modern cybersecurity controls across the enterprise network.
  • Document the company's cybersecurity architecture and systems security engineering requirements and practices.
  • Develop secure configuration management processes.
  • Research and communicate opportunities and risks related to information security around the use of artificial intelligence and machine learning technologies, and participate in discussions related to strategic directions, goals, policies, and frameworks surrounding their use.
  • Maintain awareness of emerging technology and implementation practices to assist in determining the potential effects on company operations.


Job Requirements:



  • Self-starter with desire to gain new knowledge and solve interesting problems.
  • Proven experience developing, operating, and maintaining security systems.
  • In-depth knowledge and understanding of security protocols and principles.
  • Ability to assess risks and form mitigation options by defining compensating controls.
  • Wide breadth of technical knowledge across operating system, network, and monitoring technologies
  • Strong written/verbal communication, complimented by presentation and interpersonal skills with the ability to establish effective rapport at all levels of the organization.
  • Participate fully in all Health, Safety and Environment (HSE) initiatives and safety programs.
  • Ability to work under stress, meet multiple deadlines and maintain a calm and professional demeanor when adversity is encountered.
  • Display ability to interact effectively and courteously with all staff, management, and operations personnel; and, to answer all questions effectively in a pleasant and professional manner.
  • Occasional travel required (less than 10%).
  • The understanding of the dichotomy between "spirit of the law" and "letter of the law" to help guide the organization appropriately in maintaining the security triad of confidentiality, integrity, and availability.
  • Perform other duties as assigned.



Demonstrated ability in the following competencies:



  • Build and Maintain Effective Relationships
  • Develop Self and Others
  • Technical and Business Acumen
  • Drive for Results
  • Customer focus
  • Decision Quality



Minimum Qualifications:



  • 5+ years of experience in designing, developing, and administering cybersecurity programs and solutions, including education and awareness, security incident response plans, policies, procedures, and reporting of key performance indicators and other various performance metrics
  • Experience in supporting compliance mandates and frameworks such as ISO 270001, NIST.
  • Advanced experience working with Cybersecurity tools, such as IDS, DLP, SIEM, CASB, AV, Firewall and NAC, Web and E-mail proxy filtering systems and vulnerability scanning.
  • Strong interpersonal, verbal, and written communication skills, with the ability to communicate effectively with all levels within the organization, both technical and non-technical.



Preferred Qualifications:



  • Bachelor's degree in computer science, Management Information Systems, Engineering, or related field of study.
  • Experience in complex network vulnerability and penetration testing.
  • Advanced experience in Active Directory, Office 365 and Azure subscription/tenant administration and support.
  • SIEM query language (kql, spl).
  • Experience with automation via a scripting language (PowerShell preferred).
  • Technical knowledge and understanding of process control systems and data acquisition and analytics platforms.
  • Experience with automation via a scripting language (PowerShell preferred).
  • Experience working with APIs.



Additional Details:

Work is primarily in a climate controlled / office environment with minimal safety / health hazard potential. The employee is regularly required to sit for extended periods of time, stand, or walk with occasional lifting (overhead, waist level) from floor, bending and frequent near vision use for reading and use of computer, telephone, and other office equipment. The job may require some overtime, including weekends or holidays and occasional travel is required.

This role is eligible for remote worker status

Applied = 0
MORE JOBS LIKE THIS

(web-6f6965f9bf-j5kl7)