Cyber Security Lead

This position will be posted for a minimum of 3 days and will remain open until filled or adjusted based on the volume of applicants.

Further your career at Ball, a world leader in manufacturing sustainable aluminum packaging. Achieve extraordinary things when you join our team, and make a difference in your professional development, the community, and around the globe!

Ball is thrilled to receive Newsweek's 2023 Top 100 Global Most Loved Workplace award! As a sustainable product leader, we have over 16,000 global team members. From endlessly recyclable aluminum cans, and cups, to aerosol bottles, our goal is to contribute to a better community, society, and world.

Primary purpose of the position:

This position works within the Global IT Security team to solve complex IT Security problems by taking a broad perspective to identify innovative technical solutions. The position also participates in managing our vendors to achieve the desired results including quality and on-time delivery. Working knowledge and relevant certifications in the above security tools is preferred

Essential Responsible Areas: 

The Cybersecurity Lead is a crucial role primarily focused on safeguarding our digital assets, ensuring the confidentiality and integrity of our data, and fortifying our technology infrastructure against cybersecurity threats. 

In this key role, the Cybersecurity Lead is responsible for spearheading cybersecurity initiatives, formulating and implementing security policies, and ensuring strict adherence to regulatory standards. The primary focus lies in assessing and mitigating cybersecurity risks, collaborating closely with cross-functional teams, and responding promptly to security incidents. Active monitoring of our networks, systems, and applications is essential to proactively identify and thwart potential threats. Leadership and technical expertise are instrumental in evaluating emerging technologies, recommending security solutions, and consistently enhancing our security posture.

As a forward-looking Cybersecurity Lead, this position stays informed about evolving threats and the latest developments in the cybersecurity landscape. Recommendations for continuous improvement are instrumental in preserving the confidentiality, integrity, and availability of our data and systems. The position has no direct reports or employee administration.

• Responsible for a broad range of security tasks, including the day-to-day security administration of network security devices, as well as the management of technologies, such as firewall, intrusion detection, intrusion prevention, data loss prevention, antivirus, anti-spam, antispyware, and security information and event management (SIEM) tools.
• Serve as a technical lead and mentor a team of cybersecurity professionals, providing guidance and support in executing cybersecurity initiatives.
• Develop, tune, and optimize security tools to improve the accuracy and effectiveness of threat detection.
• Collaborate with the Security Operations Manager to assess and prioritize cybersecurity risks and vulnerabilities across the organization's technology landscape.
• Monitor, analyze, and respond to security incidents and breaches swiftly and effectively, minimizing potential impact.
• Assist with security audits and assessments to identify weaknesses in networks, systems, and applications, and recommend remediation actions.
• Stay current with cybersecurity threats and trends, providing ongoing intelligence and insights to inform security decision-making.
• Evaluate and recommend cybersecurity technologies and solutions to enhance the organization's security posture.
• Lead incident response efforts, coordinate investigations, and ensure all incidents are properly documented and reported.
• Develop and maintain incident response plans, disaster recovery plans, and business continuity strategies to ensure resilience in the face of cybersecurity threats.
• Regularly assess and report on the effectiveness of cybersecurity controls, making continuous improvements to enhance overall security.
• Serve as a subject matter expert on cybersecurity matters, both internally and externally, representing the organization in discussions with partners, clients, and regulatory bodies.
• Participates in an on-call rotation with department.

REQUIRED

• Bachelor's degree in Information Security, Computer Science, or a related field or equivalent work experience.
• 5+ yrs progressive experience in the field of cybersecurity.
• Proven track record of leading and managing cybersecurity initiatives within an organization.
• Demonstrated experience in formulating and implementing cybersecurity strategies and policies.
• Strong knowledge of cybersecurity principles, technologies, and best practices.
• Familiarity with regulatory standards such as GDPR, HIPAA, or ISO 27001.
• Experience in conducting security audits, vulnerability assessments, and risk analysis.
• Previous experience in incident response and managing security incidents.
• Effective communication and interpersonal skills, with the ability to collaborate and convey complex cybersecurity concepts to non-technical stakeholders.
• Leadership skills, including the ability to mentor and manage a team of cybersecurity professionals.
• A solid understanding of emerging threats and cybersecurity trends.

PREFERRED

• Master's degree in a relevant field
• Industry-recognized certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA)
• Any additional relevant certifications such as Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), or CompTIA Security+

Skills:    

• Strong analytical and problem-solving skills to enable effective security incident and problem resolution.
• Proven ability to work under stress in emergencies, with the flexibility to handle multiple high-pressure situations simultaneously.
• Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT and business personnel.
• Ability to communicate clearly and efficiently with both technical and non-technical audiences.
• Strong customer/client focus, with the ability to manage expectations appropriately; provide a superior customer/client experience and build long-term relationships.
• Familiarity with threat intelligence and threat hunting.
• Technical expertise in networking, operating systems, applications, cloud environments and security.

Knowledge:    

• Knowledge of cloud security (AWS, Azure, Google Cloud).
• Knowledge of CISCO ASA solutions, specifically remote access.
• Technical “hands-on” proficiency with at least three  security-related systems and applications (Vulnerability software, next generation firewalls, IDS/IPS, SIEM, Data Loss Prevention).
• Technical proficiency with security-related systems and applications, especially mainstream OS’s (e.g. Microsoft Windows and Linux), Vulnerability Scanners, SIEM, and anti-malware tools, user provisioning systems and intrusion detection, automated policy compliance, and desktop security tools.
• Experience in documenting and maintaining processes and procedures.
• Knowledge of information security principles, including risk assessment, intrusion detection, network access control (NAC), encryption, threat and vulnerability management.
• Knowledge of network infrastructure, including routers, switches, firewalls, VPN, and associated network protocols and concepts; CCNA preferred.
• Knowledge of SANS Twenty Critical Controls information security policies, procedures, guidelines, and methodologies desired.
• A strong familiarity with cryptographic concepts and their practical application.
• Experience in securing Cloud environments such as Azure, AWS, SAP, etc.
• Knowledge and Understanding of the CI/CD Pipeline along with tools such as Jenkins and Bamboo.
• Experience in driving technology solutions in large, complex organizations.
• Proven focus in metrics-driven delivery: defining Service Level Agreements (SLAs), monitoring SLAs, and enhancing environment to meet SLAs.
• Experience in driving process and technology re-engineering using industry practices e.g., COBIT, ITIL, CMMi.

        
Other Requirements:    

This position will be requires extensive knowledge in three or more of the following IT Security tools:

• Firewalls and firewall management systems
• Web Content Filtering (URL Filtering)
• Web Application and Malware Protection
• Intrusion Prevention System (IPS)
• SSL Decryption
• Email Security
• Strong Authentication
• Remote Access
• End Point Protection
• Advanced Threat Management (APT)
• Vulnerability Scanning & Remediation
• Identity Management
• Data Loss Prevention
• Data Encryption Global DNS
• Security Incident Management (SIM)
• Public Key Infrastructure
• Web Application Firewall / Proxy
• IT Security Forensics
• Password Vaulting
• Risk assessment, security vulnerability assessment

Compensation & Benefits:

• The preferred location for this role is our Westminster, CO campus; but we will consider a remote candidate, dependent on experience, qualifications and willingness to engage in regular travel to Colorado campus. Hybrid On-Site Work Environment: If based in Colorado, this position requires regular in-person engagement by working on-site for three (3) or more days per work week (with core collaboration days of Tuesday, Wednesday and Thursday). Travel and local commute between Ball locations and other possible non-Ball locations may be required.
• Hiring Salary Range: $96,000 - $$137,180 (Salary to be determined by the applicant’s education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.)
• This role will be eligible to participate in the annual incentive compensation plan.
• Ball includes a comprehensive benefits structure, Go to our career site and click "Total Rewards" to learn more.

When submitting your application to Ball, we encourage you to emphasize your skills, experience, and qualifications that align with the role. Under Colorado, California, Connecticut, Minnesota, and Pennsylvania law, you have the right to exclude or redact age-related details—such as your date of birth, school attendance dates, or graduation dates—from your resume, cover letter, CV, or other supporting documents (e.g., transcripts, certificates). 

Ball Corporation is proud to be an Equal Opportunity Employer. We actively encourage applications from everybody. All qualified job applicants will receive consideration without regard to race, color, religion, creed, national origin, aboriginality, genetic information, ancestry, marital status, sex, sexual orientation, gender identity or expression, physical or mental disability, pregnancy, veteran status, age, political affiliation or any other non-merit characteristic. 

When you join Ball you belong to a team of over 16,000 members worldwide. Our products range from infinitely recyclable aluminum cans, cups to aerosol bottles that enable our customers to contribute to a better world.

Each of us has a deep commitment to diversity and inclusion which is the foundation of our culture of belonging.

Everyone at Ball is making a difference by doing what we love. Because what we create may change, but what we will always make is a difference.

Please note the advertised job title might vary from the job title on the contract due to local job title structure and global HR systems.
No agencies please.

#LI-CK1
#LI-Hybrid