Cybersecurity Operations Specialist - Howmet Aerospace
Pittsburgh, PA 15260
About the Job
Howmet Aerospace Inc. (NYSE: HWM), headquartered in Pittsburgh, Pennsylvania, is a leading global provider of advanced engineered solutions for the aerospace and transportation industries. Our primary businesses focus on jet engine components, aerospace fastening systems, titanium structural parts and forged wheels. With $6.6 billion in revenue in 2023, our products play a crucial role in enabling fuel efficiency and lightweighting, contributing to our customers' success and making a positive impact on the world. To learn more about the way Howmet Aerospace Inc. is advancing the sustainability of our customers, markets, and communities where we operate, review the 2023 Environmental Social and Governance report at www.howmet.com/esg-report .
Follow: LinkedIn , Twitter , Instagram , Facebook , and YouTube .
Howmet is proud to be an Equal Employment Opportunity and Affirmative Action employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or other applicable legally protected characteristics.
If you need assistance to complete your application due to a disability, please email TalentAcquisitionCoE_Howmet@howmet.comBasic Qualifications:
- Associate's degree from an accredited institution in computer science, information systems or a related field
- 3 years of IT experience as a hand's on security administrator of Cybersecurity tools
- Experience administering leading security tools, such as privileged access management, Hard Token management, Security Auditing and Monitoring tools or comparable products
- Must be able to demonstrate a firm understanding of the concepts of password vaulting, privileged session management, secrets management, and DevSecOps
- Understanding in various IT technologies and concepts including network topology, Linux and Microsoft administration and security, SSH connectivity/SSH key management best practices, active directory administration and familiarity with domain/forest topology, PowerShell scripting and security
- Experience or general understanding of securing Robotic Process Automation (RPA) use cases and workloads, demonstrating best practice concepts in securing credentials in RPA solutions
- General understanding of recovery terms and concepts
- Employees must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of Hire. Visa sponsorship is not available for this position
Preferred Qualifications:
- Bachelor's degree in cybersecurity, information systems or a related field
- Experience security administration of Privileged Access Management systems, Hard Token management, Security Auditing and Monitoring tools or comparable products
- Relevant industry certifications (e.g., CISSP, CISM, CompTIA Security )
- Experience or general understanding of securing Robotic Process Automation (RPA) use cases and workloads, demonstrating best practice concepts in securing credentials in RPA solutions
- Strong knowledge of cybersecurity principles, tools, and technologies
- Experience in the Manufacturing industry and Operational Technology (OT)
Salary Range: $90k - $120k/year approximation (Actual compensation is subject to variation due to factors such as education, experience, skillset, and/or location).Basic Qualifications:
- Associate's degree from an accredited institution in computer science, information systems or a related field
- 3+ years of IT experience as a hand's on security administrator of Cybersecurity tools
- Experience administering leading security tools, such as privileged access management, Hard Token management, Security Auditing and Monitoring tools or comparable products
- Must be able to demonstrate a firm understanding of the concepts of password vaulting, privileged session management, secrets management, and DevSecOps
- Understanding in various IT technologies and concepts including network topology, Linux and Microsoft administration and security, SSH connectivity/SSH key management best practices, active directory administration and familiarity with domain/forest topology, PowerShell scripting and security
- Experience or general understanding of securing Robotic Process Automation (RPA) use cases and workloads, demonstrating best practice concepts in securing credentials in RPA solutions
- General understanding of recovery terms and concepts
- Employees must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of Hire. Visa sponsorship is not available for this position
Preferred Qualifications:
- Bachelor's degree in cybersecurity, information systems or a related field
- Experience security administration of Privileged Access Management systems, Hard Token management, Security Auditing and Monitoring tools or comparable products
- Relevant industry certifications (e.g., CISSP, CISM, CompTIA Security+)
- Experience or general understanding of securing Robotic Process Automation (RPA) use cases and workloads, demonstrating best practice concepts in securing credentials in RPA solutions
- Strong knowledge of cybersecurity principles, tools, and technologies
- Experience in the Manufacturing industry and Operational Technology (OT)
Salary Range: $90k - $120k/year approximation (Actual compensation is subject to variation due to factors such as education, experience, skillset, and/or location).Join Howmet Aerospace's Corporate Information Security team and help positively impact our business through leading technologies, exciting and challenging enterprise projects, and new platforms. We are advancing our solid set of security tools to enable our business units to function securely and efficiently according to security best practices, mainly NIST Cybersecurity Framework (CSF). The Cybersecurity Operations Specialist will report to the Senior Manager, Cybersecurity Operations under the direction of the Chief Information Security Officer (CISO). This position plays a critical role in protecting Howmet technology through cyber monitoring and proactive initiatives to address threats and vulnerabilities.
Major Activities and Key Challenges:
- Cybersecurity Administrator for Howmet's security system solutions that address security requirements, leveraging standard principles and patterns. Security platforms, including but not limited to; Privileged Access Management systems, Multifactor Token/Certificate management systems, Remote Access systems and Identity & Access Management Security
- Works with Global Information Systems teams and cross-functional departments to provide security platform administration, recommend solutions based on business needs and best practices, ensuring operational or security risks are known and considered
- Regularly partner with the Cybersecurity Engineer, providing tuning and configuration parameters/settings recommendations to improve and optimize security platform operations
- Assists with lifecycle management activities for security technology, platform, systems, and related documentation to ensure operational health and security
- Follows industry, organization, and NIST CSF standards and best practices to maximize quality and efficiency of our internal systems and tools
- Assist Cybersecurity team with various initiatives, projects, and incidents as needed
- Provide off-hours on-call assistance as needed
Essential Knowledge, Skills, and Abilities:
- Critical thinking and data analysis skills to work through problems effectively and create solutions
- Solid communication skills to convey information clearly and concisely
- Strong collaboration skills to work effectively within the Cybersecurity team and with cross-functional stakeholders
Major Activities and Key Challenges:
- Cybersecurity Administrator for Howmet's security system solutions that address security requirements, leveraging standard principles and patterns. Security platforms, including but not limited to; Privileged Access Management systems, Multifactor Token/Certificate management systems, Remote Access systems and Identity & Access Management Security
- Works with Global Information Systems teams and cross-functional departments to provide security platform administration, recommend solutions based on business needs and best practices, ensuring operational or security risks are known and considered
- Regularly partner with the Cybersecurity Engineer, providing tuning and configuration parameters/settings recommendations to improve and optimize security platform operations
- Assists with lifecycle management activities for security technology, platform, systems, and related documentation to ensure operational health and security
- Follows industry, organization, and NIST CSF standards and best practices to maximize quality and efficiency of our internal systems and tools
- Assist Cybersecurity team with various initiatives, projects, and incidents as needed
- Provide off-hours on-call assistance as needed
Essential Knowledge, Skills, and Abilities:
- Critical thinking and data analysis skills to work through problems effectively and create solutions
- Solid communication skills to convey information clearly and concisely
- Strong collaboration skills to work effectively within the Cybersecurity team and with cross-functional stakeholders
