Information Technology - IT Security Director

Company: Hispanic Alliance for Career Enhancement
Location: Baltimore
Posted on: April 2, 2025

Job Description:

Baltimore RavensIT Security DirectorDept: Information TechnologyPosition Reports To: VP of ITFull-Time / ExemptGeneral Description:This position will fill a critical role for the organization by directing and managing security practices, policies/standards and developing and implementing comprehensive strategies to prevent unauthorized access to company assets and/or information. The primary responsibilities include assessing risks and driving security policies/governance/compliance across the organization (including third-party vendors) to ensure secure configuration of systems and appropriate awareness of employees. This position will also focus on ensuring organizational compliance with PCI-DSS, PII, HIPAA, and NFL Security guidelines. In addition, the position will be responsible for security monitoring, incident response, engineering/threat/vulnerability management, and identity and access management. This position will advise the club on action steps, implement enforcement and adhere to best practices in the IT security space.Primary Job Duties:

• Set the vision for enterprise security strategy and execution roadmap. Establish, maintain, and optimize security policies and ensure proper implementation of those policies on all data and systems, voice networks, local area and wide area networks, communications software, equipment, and network facilities, using the most secure configuration and the most efficient structure for both on-premise and cloud environments.
• Perform security audit for compliance standards. Develop security guidelines and policies to address and test compliance with regulatory requirements and standards, such as PCI-DSS, PII, DHS, HIPAA, and all other relevant security standards. Manage recurring NFL-initiated risk assessments and audits intended to identify potential risks, concerns or deficiencies in the organization's information technology ecosystem.
• Maintain integrity of network systems and platforms. Ensure that systems are updated with patches and backed up regularly. Ensure the security and integrity of all networks and data. Develop, implement and test disaster recovery policies and procedures and establish contingency plans for business continuity purposes.
• Monitor security. Manage the security and integrity of the network, applications, servers, and endpoints by monitoring security logs and checking for suspicious activity, security problems, or errors. Investigate and resolve irregularities immediately. Track historical activity for trends or patterns for future comparison and planning. Intervene when necessary to protect the franchise, its employees and/or data.
• Develop security training/support for all company employees. Select security training videos for ongoing training of all employees and review and enforce employee compliance. Ensure employee devices are properly equipped with endpoint protection software to protect against all security threats and to safeguard the integrity of equipment/data. Serve as liaison and resident expert in IT security.
• Document security policies and processes. Establish written log of all requests and problems, noting the resolution for future reference. Document new systems/software and the related processes used for each one. Document compliance to ensure written record for regulatory purposes. Report on best practices, areas for improvement and/or needs for the Club.
• Budget Management. Work with the VP of IT to strategize on proper allocation of resources for IT security activities effectively. Use a data driven approach to ensure that the organization has an adequate budget to maintain all required security and risk management initiatives. Stay on top of trends, make recommendations and monitor execution of tools and technologies.
• Vendor Management. Manage all security vendors as well as stakeholders, providing guidance, training and support to ensure the effective execution of security initiatives, policies and procedures. Influence stakeholders in terms of IT security management.Position Requirements (Technical) :
• Bachelor of Science degree in Information Technology or related field preferred
• 8-10 years of experience in a security role. 2-3 in a leadership position.
• Previous experience with security design and standards, along with hands-on network security experience using Active Directory, firewall, IDS/IPS, email security, log monitoring, vulnerability scanning, web filter.
• Previous experience with PCI-DSS, HIPAA, PII, NIST, cloud security and other security standards and compliance audits
• Previous experience with disaster recovery and business continuity planning.
• Experience in troubleshooting and resolving security concerns.
• Proven experience in an IT security leadership role, with a track record of successfully implementing and managing IT security programs.Required skills (non-technical):

• Strong integrity, sound judgement and ability to keep private information confidential
• Keen ability to direct and advise on IT security matters. Ability to influence and take quick action.
• Excellent organization and documentation skills.
• Experience working on teams under tight deadlines with high pressure in dynamic competitive, yet fun, environments.
• Strong and effective problem-solving skills related to information security
• Strong leadership and management skills, with the ability to present to and motivate and inspire a team.
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical stakeholders. Ability to communicate all types of information effectively with employees at all levels of the organization.
• Must have an action orientated personality that is driven with the ability to successfully work in a small-scale IT team environment.
• Passion for sports preferred.
• Ability to work occasional extended hours, including nights, weekends and holidays (if necessary), as well as all Ravens home games.Work Arrangements:This position will work in the office at least 4 days a week.Salary and Benefits:
  • Range: $110,000 - $155,000
  • Company-paid health insurance, including health and vision. Dental insurance also provided with minimal employee contribution
  • Competitive 401(K)
  • Paid time off to include 3 weeks of vacation and 5 personal/sick daysApplication ProcessTo be considered for this position, applicants must complete the online application, submit a resume and cover letter. Any applications that are missing the required information will not be considered.As an equal opportunity employer, we consider candidates from all backgrounds and identities. We encourage individuals from all ethnicities, sexual orientations, gender identities, socio economic status, as well as military veterans and individuals with disabilities, to apply.Other details
    • Job Family Baltimore Ravens
    • Pay Type Salary
      #J-18808-Ljbffr

Keywords: Hispanic Alliance for Career Enhancement, Baltimore , Information Technology - IT Security Director, Executive , Baltimore, Maryland