Director of Cybersecurity

Be #gablesproud of where you work and become part of our team by applying for your new career with Gables TODAY!

The Director of Cybersecurity will be responsible for the strategy and execution of Gables Residential’s cybersecurity program. This person will evaluate and implement security technologies that enhance Gables defense against security threats. This role will ensure that policies and procedures are aligned with NIST-CSF and other security standards. The Directory of Cybersecurity will lead the Cybersecurity Committee and facilitate committee meetings. The position reports to the Vice President of Information Technology.

Work Location:

The position is located at the Gables Residential Headquarters in Atlanta, GA (Buckhead). The current remote work policy is three days per week in the office and two days per week remote and is subject to change.

Responsibilities:

• Work with key stakeholders, executives, and the Information Technology team to develop, enhance, and execute the Gables cybersecurity strategy and roadmap
• Develop, maintain, and enhance security related policies, procedures, and processes
• Act as the information security expert to IT and business project teams to identify potential threats and risks
• Offer solutions, policy changes, technology, and support that will mitigate identified risks
• Stay current on the latest threats in the property management industry and incorporate those considerations into cybersecurity processes
• Work with internal audit and other Gables stakeholders to identify compliance and regulatory obligations and build a cybersecurity program that addresses not only compliance but also risk
• Play a critical role in developing, maintaining, and exercising incident response, disaster recovery, and business continuity processes
• Communicate the status and accomplishments of the organization’s activities and projects to executive leaders, peers in the IT organization, customers, and stakeholders
• Develop key performance indicators (KPIs) to track metrics like number vulnerabilities identified/remediated, mean time to detect an incident, mean time to respond to an incident, number of incidents, false positive incidents identified, etc.
• Advise on technical standards for Gables to follow when acquiring and operating applications and supporting infrastructure
• Assist in building business cases for technologies and/or services needed
• Evaluate vendor cybersecurity, data privacy policies, and compliance with SOC2, PCI, NIST-CSF, Penetration testing, etc.
• Negotiate vendor contracts to reduce risk related to cybersecurity and data privacy
• Maintain a strong working relationship and tight integration with Gables Managed Security Service Providers (MSSP)
• Responsible for the planning and execution of cybersecurity awareness and education of associates
• Manage one direct report; will also have access to several other IT associates to assist with security related projects and tasks

Education: Bachelor’s degree in information technology or a related discipline from an accredited college or university (or equivalent work experience in the information technology field). Ability to fluently read and write English.

Experience: A minimum of 8 years of experience in the Information Technology field. Minimum of 8 years of IT / Cybersecurity / Data security experience. Minimum 3 years of Data Privacy experience. Minimum of 3 years of experience leading Information Security teams and programs.

Technical Skills:

• Certified Information Systems Security Professional (CISSP) required
• Helpful certifications: Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Cloud certifications (CCSK, CCSP, AWS, Azure, etc.), Certified Computer Security Incident Handler (CERT CSIH)
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including NIST-CSF
• Knowledge of Payment Card Industry Data Security Standards (PCI DSS)
• Knowledge of United States data privacy laws such as CCPA
• Highly skilled and experienced with technical security products such as Network Firewalls, Security Information and Event Management, Endpoint Protection, Secure Web Gateways, Email Security, Cloud Access Security Brokers, Single Sign-on, Multifactor Authentication, Secure Mail Gateways, Active Directory, Data Loss Prevention, Secure Access Service Edge, Intrusion Prevention and Detection, Zero Trust Network Access, Identity Lifecycle Management and Automation
• Familiar with Azure Security and best practices

Skills:

• Excellent written and verbal communication skills
• Ability to interact and collaborate across all levels of the organization
• Strong documentation skills
• Strong analytical and problem-solving abilities
• Presentation skills
• Ability to organize and facilitate meetings
• Project management skills
• Must be well organized
• Must be detail oriented
• Must be team oriented but able to work independently
• Must demonstrate tact and diplomacy
• Ability to prioritize tasks and meet deadlines
• Must be customer service oriented
• Experience with contract and vendor negotiations
• Self-motivated; exhibits initiative; resourceful

Licenses and Equipment: Position requires individuals to furnish their own vehicle to fulfill all the job’s functions. Position requires individuals to have access to telephone and internet services to fulfill job functions remotely when needed.

Attendance: The position is full-time exempt. This position requires the ability to work 5 days per week, 52 weeks of the year. A normal work week is Monday through Friday. The position also requires the flexibility to work beyond 40 scheduled hours per week to meet deadlines as required by management.

Travel: Overall, occasional travel will be required (1-2 times per quarter) for continuing education, conferences, or for meeting attendance.

An Equal Opportunity Employer – M/F/D/V.

If you’re passionate about exceeding goals and providing exceptional customer service experiences, come join Gables in our mission of Taking Care!

Not ready to apply? Sign up for our job alerts to learn about future openings of interest by clicking the “my account” icon at the top of the page and selecting the job alerts option from the drop down.