Manager, Information Security
Medpace
- Cincinnati, OH
- Permanent
- Full-time
- Plan, direct and manage the day to day operations of our IT Security team;
- Develop, maintain, and enforce IT security procedures and policies that are effective and efficient in protecting Medpace computer systems & data and are consistent with regulatory requirements;
- Safeguards information system assets by identifying and solving potential and actual security problems;
- Protect systems by defining access privileges, control structures, and resources;
- Recognize problems by identifying abnormalities; reporting violations; manage IT Security incidents to closure;
- Implement security improvements by assessing current situation, evaluating trends, anticipating security risks;
- Determine security violations and inefficiencies by conducting periodic audits;
- Work across IT to upgrade systems by implementing and maintaining security controls;
- Keep IT leadership informed by preparing security posture reports; identifying areas/process improvement opportunities; communicating security trends and risks;
- Maintain quality service by following organization standards;
- Collaborate with Functional Areas/business units across the company to ensure IT Security best practices are understood and followed;
- Oversee the hiring, training, evaluation, and retention of associates; and
- Conduct IT Security policy training and ensure employees are working in compliance with SOPs and Good Clinical Practice guidelines.
- Bachelor's degree in information security, cybersecurity, information technology or related discipline;
- 1-5 years of IT management experience;
- Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification preferred;
- Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements;
- Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations;
- In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Microsoft Sentinel);
- Understanding of mobile technology and OS (i.e. Android, iOS, Windows) and VMware technology;
- Extensive experience in all Microsoft related products including operating systems, Active Directory, Azure, Remote Server and Desktop Access, SQL Server, Office 365, Teams and SharePoint;
- Experience with Perimeter Security systems and software (e.g., Firewalls, Intrusion Protection Systems, VPN); and
- Excellent management, leadership. communication, presentation, organization and positive influencing skills.
- Hybrid work-from-home options (dependent upon position and level)
- Competitive PTO packages, starting at 20+ days
- Competitive compensation and benefits package
- Flexible work schedule
- Company-sponsored employee appreciation events
- Employee health and wellness initiatives
- Community involvement with local nonprofit organizations
- Discounts on local sports games, fitness gyms and attractions
- Modern, ecofriendly campus with an on-site fitness center
- Structured career paths with opportunities for professional growth
- Discounted tuition for UC online programs
- Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024
- Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility