IT Infrastructure & Security Director

Rocky Brands is a leading designer, manufacturer and marketer of premium quality footwear and apparel marketed under a portfolio of well recognized brand names. Our brands have a rich history of representing high quality, comfortable, functional, and durable footwear. Our products are organized around six target markets: outdoor, work, duty, commercial military, military, and western. As part of our strategy of outfitting consumers from head-to-toe, we market complementary branded apparel and accessories that we believe leverage the strength and positioning of each of our brands.

The IT Infrastructure and Security Director is responsible for maintaining appropriate levels of information security throughout the Company by reviewing, analyzing, updating and implementing security controls, functions, processes, procedures, standards and technologies for the protection of Rocky Brands assets; and will plan, direct, and coordinate the design, installation, and connectivity of computer network, telephony, data center, wireless, security systems and other infrastructure to ensure the stable operation of the organization's IT assets. This includes developing, configuring, maintaining, supporting, and optimizing all new and existing network hardware and communication links.

IT Infrastructure and Security Director Essential Duties and Responsibilities

To perform the job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Duties and responsibilities include the following, other duties may be assigned:

• Perform risk assessments to identify control strengths/weaknesses, assess the effectiveness of existing controls, and recommend remedial action.
• Investigate potential or actual security violations or incidents to identify issues and areas that require new security measures or policy changes.
• Research security enhancements and make recommendations to management.
• Develop Company-wide best practices for IT security.
• Stay up to date on information technology trends and security standards.
• Ensure IT security capabilities comply with laws, regulations and internal standards/policies related to the confidentiality and integrity of systems.
• Provide expert guidance for security incident response.
• Evaluate and recommend new technology solutions required to satisfy business requirements.
• Design, test and optimize infrastructure services.
• Negotiate with vendors, outsourcers, and contractors to secure network products and services.
• Establish and maintain regular written and in-person communications with the organization's executives, decision-makers, stakeholders, department heads, and end users regarding pertinent network activities.
• Manage and establish priorities for maintenance, design, development and analysis of entire infrastructure systems inclusive of LANs, WANs, internet, security and wireless implementations.
• Oversee operational costs, conduct near along with long-term financial estimates for expanded functionality and user base.
• Apply proven communication, analytical and problem-solving skills to identify, communicate and resolve systems and network issues.
• Provide advanced technical leadership across the organization.
• Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; benchmarking state-of-the-art practices; participating in professional societies.
• Maintain staff by recruiting, selecting, orienting, and training employees; maintaining a safe, secure, and legal work environment; developing personal growth opportunities.

IT Infrastructure and Security Director Qualifications

The requirements listed below are representative of the knowledge, skill, and/or ability required.

• Bachelor's degree in Computer Science, Cyber Security, or related field; and (10) years of progressive information technology professional experience, with at least three (3) years of experience in Information Security or a related field; or an equivalent combination of education, training, and related experience.
• Information Security certification such as CISSP, GSEC, or Security+.
• Advanced proficiency with Microsoft applications, including Excel, Word, PowerPoint and Outlook.
• Excellent verbal and written communication skills.
• Strong interpersonal skills.
• Experience working with technical and non-technical personnel.
• Proven competencies in analyzing information, troubleshooting, problem solving, attention to detail, systems management, systems integration, database management and supporting commercial software applications.
• A minimum of five (5) years of experience supporting information systems in a technical leadership role.
• Advanced level of skill in Microsoft applications including Word, Excel, PowerPoint, and Outlook.
• Strong proficiency with system architecture.
• Significant experience with Windows server environments.
• Significant experience with VoIP, TCP/IP, DNS, DHCP along with switching, routing protocols.
• Knowledge of backup and storage technologies.
• Knowledge of network infrastructure, such as switches, routers, firewalls and wireless technologies. Knowledge and/or experience with Network segmentation a plus.
• Significant experience with cyber security a definite plus.
• Familiarity with information security and regulatory compliance issues.
• Familiarity with IT service management.
• Ability to prioritize multiple assignments and/or tasks.
• Proven strong oral and written communication skills.
• Excellent analytical skills.