Job Summary

Responsible for leading several Information Security service areas - Azure. Service area leaders are expected to be technical experts in the areas for which they have primary responsibility.

Major Tasks, Responsibilities and Key Accountabilities

• Architects, designs, implements, maintains and operates information system security controls and countermeasures.
• Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance.
• Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance.
• Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.
• Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement.
• Administers authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets.
• Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; performs risk and compliance self-assessments, and engages and coordinates third-party risk and compliance assessments.
• Analyzes and develops information security governance, including organizational policies, procedures, standards, baselines and guidelines with respect to information security and use and operation of information systems.
• Develops and administers, or provides advice, evaluation, and oversight for, information security training and awareness programs.

Nature and Scope

• Identifies key barriers/core problems and applies problem solving skills in order to deal creatively with complex situations. Troubleshoots and resolves complex problems. Makes decisions under conditions of uncertainty, sometimes with incomplete information, that produce effective end results.
• Independently performs assignments with instruction limited to the results expected. Determines and develops an approach to solutions. Receives technical guidance only on unusual or complex problems or issues.
• May oversee the completion of projects and assignments, including planning, assigning, monitoring and reviewing progress and accuracy of work, evaluating results, etc. Contributes to employees' professional development but does not have hiring or firing authority.

Minimum Qualifications

• Must be a minimum of 18 years of age or older
• Must pass pre-employment assessment(s) if applicable

Education and Experience

• 5+ years of experience in Information Security
• Relevant certifications

Preferred Qualifications

• Microsoft Azure security controls - Experience designing, implementing, auditing and penetration testing.
• Bachelor's degree in Computer Science or related field preferred with specific expertise and certification in
  Information Technology Security.
• Experience with Open Source Security solutions for Firewalls, HIDS, NIDS, and vulnerability assessments.
• Information Technology / Information Security certifications such as CCNA, CCNE, CISSP, CISA preferred.
• Experience in enterprise project management with a disciplined approach to delivering results consistently. Experience utilizing analytics and data to develop innovative solutions.
• 5-7 years experience in information security.
• Ability to assess the technical requirements of legacy / on premise applications and recommend target cloud architectures.
• Experience with enterprise security operations (change control, interitem communication, etc).
• CISSP certification (or equivalent) preferred.
• CCSP certification (or equivalent) preferred.

#LI-Remote

About Core & Main

Based in St. Louis, Core & Main is a leading distributor of water, sewer, storm drain and fire protection products in the United States. Operating approximately 320 branches nationwide, the company combines local expertise with a national supply chain to provide contractors and municipalities innovative solutions for new construction and aging infrastructure. Core & Main's 4,500 plus associates are committed to the safe distribution of water and fire protection to help communities thrive. Visit www.coreandmain.com to learn more.

Core & Main is an Equal Employment Opportunity employer. Employment at Core & Main is based solely on a person's merit and qualifications directly related to professional competence. Core & Main does not discriminate against any employee or applicant on the basis of race, creed, color, religion, national origin, nationality, ancestry, age, disability, veteran status, pregnancy or related condition (including breastfeeding), affectional or sexual orientation, gender identity or expression, marital status, status with regard to public assistance, citizenship, or any other basis protected by law.

None of the questions in this application are intended to elicit information regarding any protected characteristics, nor imply any limitation, illegal preferences or discrimination based upon non-job-related information or protected characteristics.

For more information, please click here or visit https://www.eeoc.gov