Job Information
Medpace, Inc. Manager, Information Security in Cincinnati, Ohio
Manager, Information Security Job Locations United States-OH-Cincinnati Category IT Infrastructure & Support Job Summary The Manager of IT Security is a strategic leader responsible for safeguarding the organization's information assets and infrastructure. This individual will develop, implement, and manage a comprehensive cybersecurity program, ensuring compliance with industry standards and regulations. They will lead a team of security professionals, oversee vulnerability assessments and incident response, and drive continuous improvement in the organization's security posture. You will be joining an amazing organization where your contribution will have a significant impact in protecting Medpace and our Sponsors! Responsibilities Plan, direct and manage the day-to-day operations of the IT Security department; Develop, maintain, and enforce IT security procedures and policies that are effective and efficient in protecting Medpace computer systems & data and are consistent with regulatory requirements; Keep IT leadership informed by preparing security posture reports; identifying areas/process improvement opportunities; communicating security trends and risks; Safeguards information system assets by identifying and solving potential and actual security problems; Recognize problems by identifying abnormalities; reporting violations; manage IT Security incidents to closure; Protect systems by defining access privileges, control structures, and resources; Work across IT to upgrade systems by implementing and maintaining security controls; Collaborate with Functional Areas/business units across the company to ensure IT Security best practices are understood and followed; Oversee the hiring, training, evaluation, and retention of associates; and Conduct IT Security policy training and ensure employees are working in compliance with SOPs and Good Clinical Practice guidelines. Qualifications Bachelor's degree in information security, cybersecurity, information technology or related discipline; 5+ years of Information Security experience, 1+ years of management or leadership experience; Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification preferred; Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements; Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, FPC), and other attack artifacts in support of incident investigations; In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Microsoft Sentinel); Understanding of mobile technology and OS (i.e. Android, iOS, Windows) and VMware technology; Extensive experience in all Microsoft related products including operating systems, Active Directory, Azure, Remote Server and Desktop Access, SQL Server, Office 365, Teams and SharePoint; Experience with Perimeter Security systems and software (e.g., Firewalls, Intrusion Protection Systems, VPN); and Excellent management, leadership. communication, presentation, organization and positive influencing skills. Medpace Overview Medpace is a full-service clinical contract research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincin