Are we RIGHT for you?

The word RIGHT stands for what we VALUE: Respect, Integrity, Growth, Honesty and Teamwork.

Why join our team?

Middlesex Water Company (NASDAQ:MSEX) has been an industry leader since 1897. We promote professional and personal development in a work environment that is supportive and responsive. We understand the importance of our services and the individuals who uphold our reputation.

Joining our team means that you have a multitude of benefits that support you in and out of the workplace such as- full medical, dental, and vision benefits, 401k, paid time off, tuition assistance, learning and development opportunities, employee assistance program, and more. To learn more, please visit www.middlesexwater.com

Job Summary:

We are seeking an experienced and highly skilled Information Technology Security Manager to join our organization. As the IT Security Manager, you will be responsible for overseeing and implementing the company's information security program, ensuring the confidentiality, integrity, and availability of our information assets. You will work closely with cross-functional teams to develop and enforce security policies, procedures, and controls, while also staying abreast of the latest security threats and technologies. The successful candidate will be passionate about supporting and driving the Company’s Values, RIGHT: Respect, Integrity, Growth, Honesty and Teamwork.

This position reports directly to the Chief Technology Officer.

Work Performed:

• Manage the IT security team to ensure the organization security needs are being met.
• Work in conjunction with the IT security team to research the latest information technology security trends.
• Monitor organization networks for security breaches and investigate violations when they occur.
• Help to design, implement, and maintain the organization’s cybersecurity plan.
• Conduct regular security audits, assessments, and penetration testing to identify vulnerabilities and recommend remedial actions.
• Develop and direct implementation of security standards and best practices for the organization.
• Direct the installation and use of security tools (e.g. firewalls, data encryption), to protect sensitive information and asset.
• Recommend security enhancements to IT management.
• Help computer technicians, end users when they need to install or learn about new security products and/or procedures.
• Ensure that IT security audits are conducted periodically or as needed.
• Develop and implement information security policies, procedures, and controls to ensure the confidentiality, integrity, and availability of information systems and data.
• Conduct security risk assessments and vulnerability assessments, and develop strategies to mitigate identified risks.
• Conduct audit of high priority third party vendors.
• Ensure compliance with regulatory requirements and industry best practices, such as HIPAA, NIST, BPU orders, AWIA and ISO 27001.
• Monitor and investigate security incidents and develop incident response plans to ensure a timely and effective response to security incidents.
• Conduct cyber security exercises and incorporate lessons learned into the incident response plan.
• Manage the company’s alignment with the National Institute of Standards and Technology (NIST) standards.
• Conduct security awareness training for IT staff and end-users to promote a culture of security within the organization.
• Work closely with IT staff to ensure that security measures are integrated into all systems and processes.
• Collaborate with other departments to ensure that security considerations are included in projects and new initiatives.
• Manage the cyber security aspects of vendors and service providers relationship.

Qualifications:

• Bachelor’s Degree or MBA in Computer Science, engineering or relevant field
• 5-7 years’ relevant experience in an IT Manager function or another IT related role.
• 5 years’ direct experience with and strong knowledge of corporate IT systems and internal controls.

Licenses/Certifications: CompTIA Security plus, CISSP or equivalent security certification preferred.

Knowledge, Skills and Abilities:

• Superior analytical and problem-solving skills, as well as exceptional written and verbal communication skills.
• Knowledge of business continuity and disaster recovery continuity of operations plans.
• Knowledge of penetration testing principles.
• Possess skill to understand business systems and processes
• Working knowledge and history of handling Cybersecurity threats
• Excellent diagnostic and problem solving abilities
• Emotional intelligent and able to work under stress
• High level of initiative and the ability to work independently
• Ability to meet due dates with minimal supervision
• Ability to independently solve practical problems
• Strong knowledge of Microsoft products and services including O365.

Physical Requirements:

• This position requires constant operation of a computer and other office equipment such as printers, copiers, calculators.
• Must have the ability to visually inspect and review hard copy and online documents.
• Must be able to communicate, detect, converse with, discern, convey, express oneself, discuss and exchange information.
  • Use written, verbal and audio communication and information sources.
• Must be able to occasionally move about inside the office to access file cabinets, office machinery, etc.
• Must be able to frequently move audio/visual equipment, computers weighing up to 50 pounds as needed. Must be able to move transport, position, put, install, remove and replace.
• Ability to sit or stand for prolonged periods of time.

Candidates must possess authorization to work in the United States.

Candidates must be able to pass a drug screen, pre-employment physical, background check, and have a valid driver’s license.

No phone calls please. We thank all applicants in advance for their interest; however, only those applicants who are being considered for the position, or are currently employed by Middlesex Water Company will be contacted.

Middlesex Water Company and its' subsidiaries are an Equal Opportunity Employer.