Overview
We are seeking a full-time Team Leader for Offensive Cyber Security in our Olathe, KS location. In this role, you will be responsible for being a technical subject matter expert for all cyber security testing and procedures for Garmin’s product and application security. In addition, this role will provide guidance and direction to help prevent attempts to find and exploit vulnerabilities for all qualified Garmin products and applications. The team leader is responsible for cybersecurity, pertaining to IoT devices, threats, web and mobile applications, and for identifying any weak spots in a system's defenses which attackers could take advantage of.
Essential Functions
- Lead a team of associates responsible for the execution of features, tools, and/or technologies associated with Garmin’s agile scrum teams
- Effectively communicate with stakeholders at all levels within the organization to ensure mitigation of cyber security risks in the environment
- Monitor progress of the team in meeting deliverables and schedule compliance
- Research and recommend new technologies to meet the business needs
- Develop and continuously improve the way in which IT solutions are delivered
- Participate as needed/required in regular or special meetings of Cyber team to address strategies, integration, progress and/or issues needing promotion of problem solving
- Able to discern when to escalate issues to management
- Maintain, improve, and extend existing software
- Manage expenses, participate in budgeting process, and cultivate vendor relationships for any software or tools owned by the team in alignment with manager and/or director
- Own and manage tool roadmaps and vendor relationships; evaluate and recommend enhancements to optimize coverage and reduce risk exposure.
- Promote a culture of knowledge sharing, collaboration, and psychological safety where team members feel empowered to speak up and contribute.
- Provide significant contributions to defining team roadmap and priorities.
- Build/maintain high performing team(s) by recruiting, developing, and retaining outstanding talent
- Promote team member engagement and effectiveness by providing constructive feedback and promoting personal development, including writing and conducting annual performance appraisals
- Develop/manage team and individual performance and capacity metrics to identify successful operations or areas where improvement is needed, while also working to ensure that all organizational objectives are met
- Demonstrate ongoing personal development, professional growth, and continuous education
- Accept, develop and execute projects and other miscellaneous IT & Security duties as assigned
- Make suggestions on security policy improvements and work to enhance methodology material
- Assess the current state of the product and application security testing procedures from a program perspective and implement improvements to the pillars of people, process and technologies in the cyber security space
- Provide relevant/accurate metrics using industry and Garmin standards of cyber threats
- Guide, develop, document and assess pen testing in the response to incidents against the NIST framework to provide repeatable and measurable workflow
- Assess technical skillset of the cyber security team and develop/execute a training plan in accordance with industry and Garmin standards
- Adhere to SOX, PCI, and other regulatory requirements as dictated
- Measure feasibility of various approaches and make recommendations
- Understand/avoid potential threats and drive counter measures for IT managed systems
- Ensure all testing requirements are met or exceeded
- After conducting thorough research and testing, document findings, write security reports, and discuss solutions with IT teams/management and provide feedback and verification after security fixes are issued
- Provide innovation within area of expertise
- Recognized as an expert in assigned discipline at Garmin and applies extensive technical expertise and analysis to initiatives
- Pinpoint ways that attackers could exploit weaknesses in IT/security systems
Basic Qualifications
- Bachelor’s Degree in Computer Science, Information Technology, Management Information Systems, Business or related field AND a minimum of 5 years relevant experience OR equivalent combination of education and relevant years of experience
- Must have experience as a current direct line manager/lead over an Offsec team
- Highly proficient in anti-virus/anti-malware, endpoint detection and response, perimeter, event logs and other security tools, including demonstrable experience with relevant technology platforms (as specific to each team)
- Demonstrated strong and effective verbal, written, and interpersonal communication skills
- Must be team-oriented, possess a positive attitude/work well with others, be a driven problem solver with proven success in solving difficult problems, possess excellent time management/follow-up skills, and consistently demonstrate quality/effectiveness in work documentation/organization
- Previous experience in management or leadership
- Solid understanding of enterprise IT services such as networking, storage, operating systems (Windows, Mac, and Linux), and databases
Garmin International is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, veteran’s status, age or disability.
This position is eligible for Garmin's benefit program. Details can be found here: Garmin Benefits
