Ball Aerospace
Overview
This position works within the Global IT Security team to solve complex IT Security problems by taking a broad perspective to identify innovative technical solutions. The position also participates in managing our vendors to achieve the desired results including quality and on-time delivery. Working knowledge and relevant certifications in the above security tools is preferred. Essential Responsibilities The Cybersecurity Lead is a crucial role primarily focused on safeguarding our digital assets, ensuring the confidentiality and integrity of our data, and fortifying our technology infrastructure against cybersecurity threats. Spearhead cybersecurity initiatives, formulate and implement security policies, and ensure strict adherence to regulatory standards. Assess and mitigate cybersecurity risks, collaborate with cross-functional teams, and respond promptly to security incidents. Actively monitor networks, systems, and applications to proactively identify and thwart potential threats. Lead with technical expertise to evaluate emerging technologies, recommend security solutions, and enhance our security posture. Stay informed about evolving threats and developments in cybersecurity; propose continuous improvement to preserve confidentiality, integrity, and availability of data and systems. Support continuous improvement by providing risk-based recommendations. Participate in on-call rotation with the department.
Required
Bachelor's degree in Information Security, Computer Science, or related field, or equivalent work experience. 5+ years of progressive experience in cybersecurity. Proven track record in leading and managing cybersecurity initiatives. Experience formulating and implementing cybersecurity strategies and policies. Strong knowledge of cybersecurity principles, technologies, and best practices. Familiarity with regulatory standards such as GDPR, HIPAA, or ISO 27001. Experience in conducting security audits, vulnerability assessments, and risk analysis. Experience in incident response and managing security incidents. Effective communication and interpersonal skills; ability to convey complex cybersecurity concepts to non-technical stakeholders. Leadership skills with ability to mentor and manage cybersecurity professionals. Understanding of emerging threats and cybersecurity trends.
Preferred
Master's degree in a relevant field. Industry-recognized certifications such as CISSP, CISM, or CISA; CEH, CompTIA Security+ welcomed. Additional relevant certifications as applicable.
Skills
Strong analytical and problem-solving skills for effective security incident and problem resolution. Ability to work under pressure in emergencies with multiple concurrent priorities. Team-oriented interpersonal skills; ability to interface with vendors, IT, and business personnel. Clear and efficient communication with technical and non-technical audiences. Customer/client focus; ability to manage expectations and build long-term relationships. Familiarity with threat intelligence and threat hunting. Technical expertise in networking, operating systems, applications, cloud environments and security.
Knowledge
Knowledge of cloud security (AWS, Azure, Google Cloud). Knowledge of networking devices and security solutions (e.g., firewalls, IDS/IPS, SIEM, DLP). Hands-on proficiency with security systems and applications (Vulnerability scanners, SIEM, anti-malware, DLP, NAC, etc.). Experience documenting and maintaining processes and procedures. Knowledge of information security principles including risk assessment, intrusion detection, encryption, and vulnerability management. Knowledge of network infrastructure (routers, switches, firewalls, VPNs); CCNA preferred. Familiarity with SANS Critical Controls and cryptographic concepts. Experience securing cloud environments (Azure, AWS, SAP, etc.). Understanding of CI/CD pipelines and tools such as Jenkins and Bamboo. Experience driving technology solutions in large, complex organizations with metrics-driven delivery (SLAs). Experience applying IT governance frameworks (e.g., COBIT, ITIL, CMMI).
Other Requirements
Extensive knowledge in three or more IT security tools (e.g., firewalls, web content filtering, IPS, SSL decryption, email security, remote access, endpoint protection, malware protection, vulnerability management, IAM, PKI, WAF/proxy, forensics, password vaulting). The preferred location is Westminster, CO; remote candidates may be considered based on experience and willingness to travel to Colorado. Travel between Ball locations may be required. Salary Range: $96,000 - $137,180; salary determined by education, experience, and internal equity. Eligible to participate in the annual incentive compensation plan. Ball offers a comprehensive benefits structure; see Total Rewards on our career site.
Ball Corporation is an Equal Opportunity Employer. All qualified job applicants will receive consideration without regard to race, color, religion, creed, national origin, sex, sexual orientation, gender identity or expression, disability, pregnancy, veteran status, age, or any other non-merit characteristic. Please note the advertised job title might vary from the job title on the contract due to local job title structure and global HR systems. No agencies please. #J-18808-Ljbffr
This position works within the Global IT Security team to solve complex IT Security problems by taking a broad perspective to identify innovative technical solutions. The position also participates in managing our vendors to achieve the desired results including quality and on-time delivery. Working knowledge and relevant certifications in the above security tools is preferred. Essential Responsibilities The Cybersecurity Lead is a crucial role primarily focused on safeguarding our digital assets, ensuring the confidentiality and integrity of our data, and fortifying our technology infrastructure against cybersecurity threats. Spearhead cybersecurity initiatives, formulate and implement security policies, and ensure strict adherence to regulatory standards. Assess and mitigate cybersecurity risks, collaborate with cross-functional teams, and respond promptly to security incidents. Actively monitor networks, systems, and applications to proactively identify and thwart potential threats. Lead with technical expertise to evaluate emerging technologies, recommend security solutions, and enhance our security posture. Stay informed about evolving threats and developments in cybersecurity; propose continuous improvement to preserve confidentiality, integrity, and availability of data and systems. Support continuous improvement by providing risk-based recommendations. Participate in on-call rotation with the department.
Required
Bachelor's degree in Information Security, Computer Science, or related field, or equivalent work experience. 5+ years of progressive experience in cybersecurity. Proven track record in leading and managing cybersecurity initiatives. Experience formulating and implementing cybersecurity strategies and policies. Strong knowledge of cybersecurity principles, technologies, and best practices. Familiarity with regulatory standards such as GDPR, HIPAA, or ISO 27001. Experience in conducting security audits, vulnerability assessments, and risk analysis. Experience in incident response and managing security incidents. Effective communication and interpersonal skills; ability to convey complex cybersecurity concepts to non-technical stakeholders. Leadership skills with ability to mentor and manage cybersecurity professionals. Understanding of emerging threats and cybersecurity trends.
Preferred
Master's degree in a relevant field. Industry-recognized certifications such as CISSP, CISM, or CISA; CEH, CompTIA Security+ welcomed. Additional relevant certifications as applicable.
Skills
Strong analytical and problem-solving skills for effective security incident and problem resolution. Ability to work under pressure in emergencies with multiple concurrent priorities. Team-oriented interpersonal skills; ability to interface with vendors, IT, and business personnel. Clear and efficient communication with technical and non-technical audiences. Customer/client focus; ability to manage expectations and build long-term relationships. Familiarity with threat intelligence and threat hunting. Technical expertise in networking, operating systems, applications, cloud environments and security.
Knowledge
Knowledge of cloud security (AWS, Azure, Google Cloud). Knowledge of networking devices and security solutions (e.g., firewalls, IDS/IPS, SIEM, DLP). Hands-on proficiency with security systems and applications (Vulnerability scanners, SIEM, anti-malware, DLP, NAC, etc.). Experience documenting and maintaining processes and procedures. Knowledge of information security principles including risk assessment, intrusion detection, encryption, and vulnerability management. Knowledge of network infrastructure (routers, switches, firewalls, VPNs); CCNA preferred. Familiarity with SANS Critical Controls and cryptographic concepts. Experience securing cloud environments (Azure, AWS, SAP, etc.). Understanding of CI/CD pipelines and tools such as Jenkins and Bamboo. Experience driving technology solutions in large, complex organizations with metrics-driven delivery (SLAs). Experience applying IT governance frameworks (e.g., COBIT, ITIL, CMMI).
Other Requirements
Extensive knowledge in three or more IT security tools (e.g., firewalls, web content filtering, IPS, SSL decryption, email security, remote access, endpoint protection, malware protection, vulnerability management, IAM, PKI, WAF/proxy, forensics, password vaulting). The preferred location is Westminster, CO; remote candidates may be considered based on experience and willingness to travel to Colorado. Travel between Ball locations may be required. Salary Range: $96,000 - $137,180; salary determined by education, experience, and internal equity. Eligible to participate in the annual incentive compensation plan. Ball offers a comprehensive benefits structure; see Total Rewards on our career site.
Ball Corporation is an Equal Opportunity Employer. All qualified job applicants will receive consideration without regard to race, color, religion, creed, national origin, sex, sexual orientation, gender identity or expression, disability, pregnancy, veteran status, age, or any other non-merit characteristic. Please note the advertised job title might vary from the job title on the contract due to local job title structure and global HR systems. No agencies please. #J-18808-Ljbffr