Information Technology Security Operations Manager

GM Financial is the captive finance company and the wholly owned subsidiary of General Motors and is headquartered in Fort Worth, Texas. The company is a global provider of auto finance solutions, with operations in North America, Europe, Latin America and China.

The Security Operations Manager is responsible for leading / managing the efforts to integrate, implement, and maintain the security infrastructure and operationalize the security requirements and goals of the organization. The manager will continuously monitor levels of service of the team through use of metrics to analyze staff productivity and ensuring that customer needs are being met in a timely manner. In addition, the role will require managing team members ensuring adherence to company policies, departmental standards, and leading the team towards our common goals.

* Provide technical and supervisory oversight for the planning and execution of changes impacting the general security posture for the business. * Provide technical oversight on firewalls, VPN tunnels, client RAS, proxies and front-end troubleshooting engagements for the IT Security team. * Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies. * Provide oversight on the “security review process” for business requests while empowering the team to make technical decisions based upon information provided and the data / system elements needing to be secured. * Provide regular updates about outstanding security issues, current work load distribution and milestones achieved. * Develop and maintain processes and procedures used to manage daily operations. * Ensure that staff is monitoring for incidents, requests, changes and following change control with their daily activities. * Create a roadmap of programs and projects to successfully implement the company strategies in a timely manner. * Collaborate with the VP to develop and maintain professional network and business relationships with vendors, peer organizations, and other business contacts. * Assist the VP with the development of goals, objectives, and unit work plans in coordination with the IT strategic planning process. * Provides escalation and after-hours support as needed. * Lead, manage, and influences team members towards meeting various departmental objectives. Ensure team member morale is at a level conducive to high productivity. Ensure team members training needs are being met. * Conduct performance and salary reviews for team members. * Stay current with company policy regarding the management of team members. * Managing Conflict - Negotiates adeptly with individuals and groups; effective at managing conflict and confrontations skillfully. * Leading Employees - Delegates to employees effectively, broadens employee opportunities, acts with fairness toward direct reports, and hires talented people for his/her team. * Leadership Stature - Provides a good role model for employees and keeps a positive attitude. * Credibility - Acts in accordance with stated values; follows through on promises; uses ethical considerations to guide decisions and actions.

**Experience** * Experience with firewalls, VPN tunnels, content filtering, IDS/IPS and other areas of IT Security desired. * Working experience within an organization leveraging change management. * 8-10 years of experience supporting a large-scale enterprise environment, with an emphasis in IT Security preferred. * Bachelor's degree or multiple current job related certifications desired. **Reporting Relationship** * Reports to: VP IT Security * Direct Reports: IT Security Operations Engineers **Knowledge** * Demonstrate a strong understanding of the IT security landscape, including emerging risks and security solutions. * Advanced knowledge of the TCP/IP protocol suite, DHCP, DNS, LAN/WAN, and Operating System concepts. * Advanced knowledge of packet capture methods and analysis of network flows * Advanced knowledge of the OSI model and security that is associated with each layer. * Advanced knowledge of wide area network security as it pertains to networking protocols and connectivity to/from outside resources * Strong network security knowledge to include Remote access - VPN, Firewalls, DMZ architecture, network monitoring, intrusion detection, web server security, and wireless security. * Knowledge of security logging tools (log management, SIEM, etc.). **Skills** * Advanced technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications, and data storage. * Understanding of information security standards/frameworks (NIST Cybersecurity Framework, ISO 27001) is a plus. * Communication/Listening - excellent verbal and written communication skills. Communicates quickly, clearly, concisely, appropriately, and intelligently; foster open communication, speaks with impact, listens to others, and writes effectively * Works well in a team environment and has proven team management ability * Teamwork/Cooperation/Dealing with Others - works well with others in team and collaborative type situations; establishes SMART goals for employees, sets expectations and clearly define areas of responsibility. * Customer Service - recognizing internal and external customers and providing world-class service; set expectations, handle conflict, follow-through. * Change/Adaptability - handling organizational change and shifting priorities; identify your role, view change as a way of life, clarify new practices and procedures, take advantage of learning opportunities. * Creative Ideals/Innovation/Problem - solving-maximizing your potential to solve problems and improve methods; approach problems with an open-mind, use existing information and resources, think positively when faced with obstacles, build on others ideas, think logically and intuitively. * Time Management - using time most efficiently and effectively; prioritization, negotiation and delegation * Results Orientation - Aligns resources to accomplish key objectives; assigns clear accountability for important objectives.