Job Description

Recognized internally as the technical expert in information security systems. Design, build, test, and implement security systems within Dairy Farmers of America’s (DFA) IT infrastructure. Apply a thorough understanding of complex IT systems and stay up to date with the latest and emerging security standards, systems, authentication protocols, and best practice security products.

Job Duties and Responsibilities

• Determine security requirements by studying the architecture, evaluating business needs and technical requirements, researching information security standards, and conducting system security and vulnerability analyses and risk assessments
• Ensure smooth integration into DFA’s current technical environment
• Review, assess, and design new and current securitytechnology solutions to ensure appropriate controls and tools are selected, operationalized, and perform as expected
• Design and implement information security technology solutions that are functional, resilient, secure, and meet businesstechnical requirements, DFA standards, and industry best practices
• Implement security systems by specifying methodologies and equipment, directing hardwaresoftware installation and calibration, preparing preventive and reactive measures, providing technical support, and completing documentation
• Review current system security measures, identify areas of weakness, and respond promptly to recommend and implement enhancements for improvement of the overall security posture of the Cooperative
• Serve as an advisor to technical and business stakeholders on security practices and controls to support secure solution design
• Conduct regular system tests and ensure continuous security monitoring is in place
• Establish disaster recovery procedures for security technologies and conduct breach of security drills
• Respond promptly to all security incidents or breaches and provide thorough post-event analyses
• Enhance the information security team accomplishments and competence by planning delivery of solutions, answering technical and procedural questions for less experienced team members, teaching improved processes, and mentoring team members
• Upgrade security systems by monitoring security environment, identifying security gaps, evaluating and scheduling enhancements
• Prepare system security reports by collecting, analyzing, and summarizing data and trends
• Develop and maintain documentation of key operational processes
• Cultivate a culture of security awareness, and arrange continuing education of personnel to ensure security policies are always adhered to
• Assist senior management in developing strategic program roadmaps, annual budgets, and managing vendor relationships
• The requirements herein are intended to describe the general nature and level of work performed by employee, but is not a complete list of responsibilities, duties, and skills required. Other duties may be assigned as required

Qualifications

Education and Experience

• Undergraduate degree in information security, computer science, information technology, or related curriculum (or equivalent combination of experience and education)
• 10 or more years of progressive information security, IT risk management, or related experience with a focus on security, performance, and reliability
• Experience in developing, documenting and implementing security architecture and plans, including strategic, tactical, and project plans
• Working knowledge of security frameworks and standards, such as NIST 800-53, ISO 27001/2 , ISA/IEC 62443, NIST Cybersecurity Framework, and their practical application in industrial environments.
• Relevant professional certifications (e.g., CISSP, GICSP, GRID, CISM, or ISA/IEC 62443 certifications) are preferred and may be required during the course of employment

An Equal Opportunity Employer including Disabled/Veterans