Job Information
Southern Glazer's Wine and Spirits Senior Manager Cloud Security in Dallas, Texas
What You Need To Know
Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity.
As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more.
We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY.
Overview
The Senior Manager, Cloud Security role is a pivotal leadership position responsible for overseeing the Cloud Security team. This role involves guiding a team of Cloud Security Engineers in their daily operations, strategic development, and policy enforcement to mitigate security risks. The Senior Manager will work closely with direct reports to design, implement, and assess security controls that protect the organization’s cloud infrastructure.
Specialized Skills and Technologies
Solid knowledge of current and emerging technologies
Hands-on experience with Infrastructure-as-Code (IaC) tools
Experience with dynamic/static application security testing (DAST/SAST) tools
Familiarity with DevSecOps principles and practices as they relate to security automation and integration
Proficient in monitoring tools, access control, and threat detection
Excellent teaching, problem-solving, communication, and interpersonal skills
Solid understanding of networking, systems, and security-related technologies
Extensive experience in cloud security for all major cloud environments
Solid understanding of security frameworks such as NIST, ISO 27001, etc.
Ability and desire to lead and the flexibility to also share the duties of the technical team
Willingness to mentor, train, and share knowledge with peers
Ability to build and maintain relationships, provide mentorship, and present ideas in an effective manner
Ability to utilize staff strengths, develop staff in weak areas, and constructively address staff performance problems
Experience with Cloud Security Posture Management (CSPM) tools
Knowledge and implementation experience of Zero Trust security models
Experience with containerization technologies (e.g., Docker, Kubernetes) and securing containerized environments
Proficiency in Identity and Access Management (IAM) solutions and practices
Experience with Security Information and Event Management (SIEM) tools
Knowledge of data protection techniques and encryption standards
Experience in leading incident response efforts and conducting digital forensics investigations
Familiarity with compliance requirements and regulatory standards specific to cloud environments
Primary Responsibilities P1
Develops and drives a comprehensive cloud security strategy that aligns with overall business objectives and ensures robust protection of cloud assets
Leads the creation and implementation of an Incident Response Plan for cloud environments, encompassing detection, containment, and recovery phases
Conducts post-mortem/root cause analysis for cloud-related incidents, providing strategic insights to prevent future occurrences
Oversees and manages internal operations projects, ensuring effective coordination and resource allocation across departments
Establishes and enforces enterprise-wide policies, standards, and procedures related to cloud security configurations
Partners with cross-functional teams to embed security into the CI/CD pipeline, ensuring continuous security throughout the software development lifecycle
Utilizes Cloud Security Posture Management (CSPM) solutions to monitor and manage infrastructure-as-code (IaC) frameworks, ensuring compliance with security standards and policies
Regularly reviews CSPM findings to proactively identify and mitigate security vulnerabilities
Implements and oversees continuous monitoring tools to detect and respond to security threats in major cloud environments
Analyzes activities and documented resolutions, identifying problem areas and delivering solutions to enhance service quality and prevent future issues
Defines key operational metrics, develops reporting mechanisms, and sets targets to drive continuous improvement in cloud security operations
Directs and participates in Information Security projects, supporting team efforts in day-to-day operations and strategic initiatives
Sets staff goals, provides training, and defines technology priorities to develop and scale the information security program
Aggressively automates repetitive tasks to enable the team to scale with organizational growth
Acts as a liaison with end users and colleagues, ensuring clear communication and collaboration
Primary Responsibilities P2
Communicates progress on priorities and budget to management and the team, ensuring transparency and alignment
Serves as a technical leader and subject matter expert within the organization, assisting with complex cloud security issues as needed
Participates in on-call rotation to provide expert support during critical incidents
Recruits, hires, and manages staff, ensuring consistent application of employee guidelines, processes, and procedures
Conducts performance reviews, holds employees accountable for optimal performance, and provides ongoing feedback and coaching
Organizes the Cloud Security team to address the information security needs, goals, and concerns of the business
Assesses current cloud environments and makes strategic recommendations for improvements
Provides continuous feedback on performance, initiates performance plans and disciplinary actions as needed, and prepares and presents appraisals
Engages with senior leadership and key stakeholders to communicate cloud security strategies, risks, and progress
Provides regular updates and reports to the executive team on the status of cloud security initiatives and metrics
Stays current with emerging cloud security trends, technologies, and best practices, and integrates them into the organization’s security strategy
Drives innovation in cloud security practices, encouraging the adoption of new technologies and methodologies to enhance security posture
Manages relationships with cloud service providers and third-party vendors, ensuring they meet security requirements and service level agreements
Evaluates and selects security tools and technologies that align with the organization’s cloud security strategy
Develops and implements a cloud security risk management framework to identify, assess, and mitigate risks associated with cloud services and infrastructure
Conducts regular risk assessments and audits to ensure compliance with industry standards and regulatory requirements
Preferred Qualifications
Master’s degree
Relevant certifications such as CISSP, CISM, CCSP, or AWS Certified Security
Minimum Qualifications
Minimum 12 years of experience in cloud security, technical configurations, and varying technologies in a fast-paced environment.
Minimum 7 years of experience in managing a team of cloud security or Information Technology professionals.
Knowledge of implementing, managing, and maintaining a WAF to protect web applications from a variety of online threats
Familiar with serverless computing models and understanding of security considerations specific to serverless architectures
Ability to analyze complex security issues, troubleshoot, and develop solutions
Ability to assess security risks associated with cloud environments
Strong planning and organizational skills to work in a fast-paced environment and manage multiple priorities
Excellent customer service skills in all interactions with internal and external customers, including but not limited to partners from other divisions, vendors, and suppliers across all areas of the business
Strong stakeholder management skills, with the ability to communicate effectively with senior leadership
Ability to monitor project progress by tracking activities, issues/ risks/dependencies, and provides recommendation for resolution
Agile Delivery Values
Openness – Team and stakeholders agree to be open about all work and challenges
Commitment – Personally commit to achieving the goals of the team
Respect – Respect your team members to be capable and independent
Courage – You have courage to do the right thing and work on tough problems
Focus – Everyone focus on the work in the sprint and the goal of the scrum team. Rise and fall as a team
Physical Demands
Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device
Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping
May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs
EEO Statement
Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.
Southern Glazer's Wine and Spirits provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Southern Glazer's Wine and Spirits
- Southern Glazer's Wine and Spirits Jobs