Cybersecurity Operations Specialist

Join Howmet Aerospace’s Corporate Information Security team and help positively impact our business through leading technologies, exciting and challenging enterprise projects, and new platforms. We are advancing our solid set of security tools to enable our business units to function securely and efficiently according to security best practices, mainly NIST Cybersecurity Framework (CSF). The Cybersecurity Operations Specialist will report to the Senior Manager, Cybersecurity Operations under the direction of the Chief Information Security Officer (CISO). This position plays a critical role in protecting Howmet technology through cyber monitoring and proactive initiatives to address threats and vulnerabilities.

Major Activities and Key Challenges:

• Cybersecurity Administrator for Howmet’s security system solutions that address security requirements, leveraging standard principles and patterns. Security platforms, including but not limited to; Privileged Access Management systems, Multifactor Token/Certificate management systems, Remote Access systems and Identity & Access Management Security
• Works with Global Information Systems teams and cross-functional departments to provide security platform administration, recommend solutions based on business needs and best practices, ensuring operational or security risks are known and considered
• Regularly partner with the Cybersecurity Engineer, providing tuning and configuration parameters/settings recommendations to improve and optimize security platform operations
• Assists with lifecycle management activities for security technology, platform, systems, and related documentation to ensure operational health and security
• Follows industry, organization, and NIST CSF standards and best practices to maximize quality and efficiency of our internal systems and tools
• Assist Cybersecurity team with various initiatives, projects, and incidents as needed
• Provide off-hours on-call assistance as needed

Essential Knowledge, Skills, and Abilities:

• Critical thinking and data analysis skills to work through problems effectively and create solutions
• Solid communication skills to convey information clearly and concisely
• Strong collaboration skills to work effectively within the Cybersecurity team and with cross-functional stakeholders

Basic Qualifications:

• Associate’s degree from an accredited institution in computer science, information systems or related field
• 5 years of IT Experience
• 3 years in Cybersecurity hands on or engineering experience
• 2 years as hands-on security administration of Cybersecurity tools
• Experience administering leading security tools, such as privileged access management, Hard Token management, Security Auditing and Monitoring tools or comparable products
• Must be able to demonstrate a firm understanding of the concepts of password vaulting, privileged session management, secrets management, and DevSecOps
• Understanding in various IT technologies and concepts including: network topology, Linux and Microsoft administration and security, SSH connectivity/SSH key management best practices, active directory administration and familiarity with domain/forest topology, PowerShell scripting and security
• Experience or general understanding of securing Robotic Process Automation (RPA) use cases and workloads, demonstrating best practice concepts in securing credentials in RPA solutions
• General understanding of Disaster Recover terms and concepts
• Employees must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of Hire. Visa sponsorship is not available for this position
• This position requires use of information or access to hardware that is subject to the International Traffic in Arms Regulations (ITAR) and Cybersecurity Maturity Model Certification (CMMC). All applicants must be U.S. persons within the meaning of ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee

Preferred Qualifications:

• Bachelor’s degree in Cybersecurity or Information Systems from an accredited institution
• Experience security administration of Privileged Access Management systems, Hard Token management, Security Auditing and Monitoring tools or comparable products
• Relevant industry certifications (e.g., CISSP, CISM, CompTIA Security )
• Strong knowledge of cybersecurity principles, tools, and technologies
Experience in the Manufacturing industry and Operational Technology (OT)

Salary Range : $90k – $120k/year approximation (Actual compensation is subject to variation due to factors such as education, experience, skillset, and/or location).