Ball Corporation

Cybersecurity Lead

Ball Corporation

full-time

Posted on:

Origin:  • 🇺🇸 United States • Colorado

Visit company website
AI Apply
Manual Apply

Salary

💰 $96,000 - $137,180 per year

Job Level

Senior

Tech Stack

AWSAzureCloudCyber SecurityDNSFirewallsGoJenkinsLinux

About the role

  • Work within the Global IT Security team to solve complex IT Security problems and identify innovative technical solutions
  • Participate in managing vendors to achieve quality and on-time delivery
  • Day-to-day security administration of network security devices and management of technologies (firewall, IDS/IPS, DLP, antivirus, anti-spam, antispyware, SIEM)
  • Serve as a technical lead and mentor cybersecurity professionals
  • Develop, tune, and optimize security tools to improve threat detection accuracy and effectiveness
  • Collaborate with Security Operations Manager to assess and prioritize cybersecurity risks and vulnerabilities
  • Monitor, analyze, and respond to security incidents and breaches; minimize potential impact
  • Assist with security audits and assessments; recommend remediation actions
  • Stay current with cybersecurity threats and trends; provide intelligence and insights
  • Evaluate and recommend cybersecurity technologies and solutions
  • Lead incident response efforts, coordinate investigations, and ensure documentation and reporting of incidents
  • Develop and maintain incident response plans, disaster recovery plans, and business continuity strategies
  • Regularly assess and report on effectiveness of cybersecurity controls and make continuous improvements
  • Serve as a subject matter expert on cybersecurity matters internally and externally
  • Participate in an on-call rotation with the department

Requirements

  • Bachelor's degree in Information Security, Computer Science, or a related field or equivalent work experience
  • 5+ yrs progressive experience in the field of cybersecurity
  • Proven track record of leading and managing cybersecurity initiatives
  • Demonstrated experience in formulating and implementing cybersecurity strategies and policies
  • Strong knowledge of cybersecurity principles, technologies, and best practices
  • Familiarity with regulatory standards such as GDPR, HIPAA, or ISO 27001
  • Experience in conducting security audits, vulnerability assessments, and risk analysis
  • Previous experience in incident response and managing security incidents
  • Effective communication and interpersonal skills for technical and non-technical audiences
  • Leadership skills, including ability to mentor and manage cybersecurity professionals
  • Preferred: Master's degree in a relevant field
  • Preferred: Industry-recognized certifications such as CISSP, CISM, or CISA
  • Additional relevant certifications preferred: CEH, CISM, CompTIA Security+
  • Strong analytical and problem-solving skills; ability to work under stress and handle emergencies
  • Familiarity with threat intelligence and threat hunting
  • Technical expertise in networking, operating systems, applications, and cloud environments
  • Knowledge of cloud security (AWS, Azure, Google Cloud)
  • Knowledge of CISCO ASA solutions, specifically remote access
  • Technical hands-on proficiency with at least three security-related systems (vulnerability software, next generation firewalls, IDS/IPS, SIEM, DLP)
  • Proficiency with mainstream OSs (Microsoft Windows and Linux), vulnerability scanners, SIEM, anti-malware tools, user provisioning systems, intrusion detection, automated policy compliance, desktop security tools
  • Experience in documenting and maintaining processes and procedures
  • Knowledge of information security principles including risk assessment, intrusion detection, NAC, encryption, threat and vulnerability management
  • Knowledge of network infrastructure (routers, switches, firewalls, VPN) and associated protocols; CCNA preferred
  • Familiarity with SANS Twenty Critical Controls desired
  • Strong familiarity with cryptographic concepts and practical application
  • Experience securing Cloud environments such as Azure, AWS, SAP
  • Knowledge and understanding of CI/CD pipeline and tools such as Jenkins and Bamboo
  • Experience driving technology solutions in large, complex organizations
  • Metrics-driven delivery experience: defining and monitoring SLAs
  • Experience with process and technology re-engineering using COBIT, ITIL, CMMi
  • Extensive knowledge in three or more of the following IT Security tools: Firewalls and firewall management systems; Web Content Filtering; Web Application and Malware Protection; Intrusion Prevention System (IPS); SSL Decryption; Email Security; Strong Authentication; Remote Access; End Point Protection; Advanced Threat Management; Vulnerability Scanning & Remediation; Identity Management; Data Loss Prevention; Data Encryption; Global DNS Security; Security Incident Management (SIM); Public Key Infrastructure; Web Application Firewall / Proxy; IT Security Forensics; Password Vaulting; Risk assessment; security vulnerability assessment