Key areas of focus and responsibilities include but are not limited to the following. Security & Compliance - Provide support and guidance to ECS HQ and ECS Operating Companies (Op. Cos) to ensure compliance with Corporate Security and IT policies and remediation of Security & related IT issues. Provide guidance, oversight & support on Security & IT metrics to ECS HQ and to ECS Operating Companies, remotely and on-site at Op. Cos Ensure Corporate SOP's are followed by ECS and Op. Cos Ensure requ... more details
Job Title: Regional Security & Compliance Manager for EMCOR Construction Services
Department: Information Technology
Location: McLean, VA
Reports to: EMCOR Construction Services Director of IT
FLSA Status: Full-Time / Exempt
OVERVIEW
EMCOR Construction Services (ECS) is part of EMCOR Group, Inc. (NYSE: EME), a Fortune 500® leader in mechanical and electrical construction, industrial and energy infrastructure, and building services for a diverse range of businesses. ECS is a nationwide group of 45+ operating companies with over 22,000 employees and annual revenues of $7.9 billion. Our operating companies are mechanical and commercial electrical contractors with expertise that includes virtually all U.S. commercial, healthcare, institutional, education, hospitality, manufacturing, transportation, and water and wastewater markets. We also have several operating companies that focus on commercial fire protection. They provide integrated life safety solutions, including fire detection and suppression systems, and the most advanced security technology available today. The ECS headquarters team located in McLean, VA, provides key support for its electrical and mechanical companies, including finance and accounting, human resources, legal, national purchasing and information technology.
The Regional Security & Compliance Manager position reports to the ECS Director of IT and works closely with the ECS Security & Compliance Manager and the EMCOR Security & Compliance Team. This position is based out of McLean, Virginia. However, candidates in other locations and meeting the requirements below may be considered.
The ECS Headquarters is located in McLean, VA. This role focuses on ECS Operating Companies geographically located in the Western US and can be performed remotely by a successful candidate from the Western US or other locations near major airports.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Key areas of focus and responsibilities include but are not limited to the following.
Security & Compliance - Provide support and guidance to ECS HQ and ECS Operating Companies (OpCos) to ensure compliance with Corporate Security and IT policies and remediation of Security & related IT issues.
- Provide guidance, oversight & support on Security & IT metrics to ECS HQ and to ECS Operating Companies, remotely and on-site at OpCos
- Ensure Corporate SOP’s are followed by ECS and OpCos
- Ensure required metrics are met on a timely basis
- Work with OpCo Executives and IT as required on needed risk mitigation activities
- Travel required up to 50% to US-based OpCos focusing on OpCos geographically located in the US West
- Provide technical support and guidance to subsidiary IT personnel to complete initiatives and mitigate issues
- Cultivate working relationships with IT administrators and management across a diverse organization to facilitate Security & IT policy compliance
- Participate in scheduled Security and Compliance meetings with Corporate, Segment and OpCo Security & IT Teams
- Participate and lead remote and in-person meetings with OpCos reviewing Security metric performance and needs
- Work remediation tasks as needed with OpCo IT to demonstrate proper metric interpretation and remediation methods both remotely and onsite
- Coordinate and conduct Security questionnaire response meetings
QUALIFICATIONS
To perform this job successfully, the individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
REQUIRED EXPERIENCE
- Five (5) years of experience working with Security & Compliance in a complex IT environment
- Three (3) years of experience working across Windows Server and desktop platforms in a complex IT environment
- Experience should demonstrate the ability to work effectively and independently or in small teams
- Remediation of Security & Compliance issues including CVEs, security alerts from monitored systems and compliance with SOPs
- EDR monitoring, deployment and support
- Experience with MFA, SSO, and other security identity tools such as Okta
- Experience with CMMC including SSPs and basic assessments, NIST CSF, ISO 27001 and similar standards
- Strong understanding of information security and privacy standards
- Microsoft Active Directory and Entra ID
- Proficiency using Microsoft Office including Word and Excel
PREFERRED EXPERIENCE
- Industry standard certifications (e.g., GIAC, CISSP, CISM) preferred but not required
- Autopilot, InTune and similar configuration technology
- Participation in Security projects and risk mitigation meetings
- Experience working with different departments in a large enterprise to reduce risk
- IT support and understanding of IT concepts, application security and mobile device security
- Microsoft 365support and use
- Working experience with Enterprise Security and Compliance tools
ADDITIONAL NOTED REQUIREMENTS
- Candidates in the Western US and other locations meeting the requirements are preferred
- Work hours are generally 40 hours per week but may flex based on the needs of the business
- Participation in weekly or as required after-hours maintenance or meetings
CHARACTERISTICS AND SKILLS
The successful candidate for this role is an individual who demonstrates a high level of service, commitment and execution. The following are required characteristics, knowledge, skills and abilities:
- Possess exceptional customer service skills, be patient, well organized, and a good communicator
- Possess strong analytical and logical reasoning skills
- Ability to clearly communicate Security & Compliance expectations and priorities
- Experience successfully communicating Security & Compliance and IT principles and objectives with personnel at all levels
- Self-motivated with a high attention to detail
- Demonstrate strong interpersonal skills and the ability to read and interpret communication styles of diverse team members who come from a broad spectrum of disciplines
- Ability to work independently is a must
LANGUAGE SKILLS
Must have the demonstrated ability to effectively communicate in English, cooperate, and collaborate with multiple levels of employees, executive leadership, and customers within/outside of the organization
PHYSICAL DEMANDS
- The physical demands are those associated with working in a typical office environment
- Able to travel regionally and nationally by plane, car, or train
WORK ENVIRONMENT
Travel required approximately up to 50% of time with focus geographically on the US West
We offer our employees a competitive salary and comprehensive benefits package and are always looking for individuals with the talent and skills required to contribute to our continued growth and success. Equal Opportunity Employer/Veterans/Disabled
Benefits: As a leading provider of mechanical and electrical construction, facilities services, and energy infrastructure, Corporate Group is committed to its employees. This commitment is embodied in our competitive benefits package, which includes medical, dental, and vision coverage, as well as flexible spending accounts, life insurance, disability income, 401(k) Savings Plans, and employee assistance and wellness programs.
#ECS
#LI -CS1