Requirements

Operating system

Windows

Our requirements

• 7+ years of experience in information security roles
• Experience in leading technical personnel within information security disciplines
• Exceptional communications skills (oral and written) with a history of successfully engaging with multiple levels of leadership
• Experience in process development and curation, with the ability to take lessons learned from incidents and other operational issues/concerns to improve documentation
• Understanding of technology systems such as networks, applications, servers, virtualization, cloud, authentication, and emerging technologies
• Strong knowledge of cyber security threat actors, particularly their tactics, techniques, procedures, tradecraft, and noteworthy attacks
• Experience working with information security teams and functions, such as security operations centers, vulnerability assessment, vulnerability threat management, security incident management, threat intelligence, threat hunting, and cyber threat analytics; direct experience in these functions in preferred
• Familiarity with enterprise change management best practices
• Must be a self-starter, self-motivated, and able to work independently with little oversight
• Bachelor’s degree required; master’s degree preferred
• Degrees and/or certifications in computer forensics, information security, management, and similar preferred

Your responsibilities

• Lead and mentor a team of information security professionals focused on security alert handling and incident management activities
• Arrange and maintain continuous regional coverage for assigned team duties; this includes shift-based coverage primary aligned with normal business hours per region
• Interface with Information Security Operations Program Leads to promote program development and inter-region standardization
• Ensure that processes, including incident handling, are followed per established plans and processes; can identify when deviation from plans and processes is required and helps to control associated risks
• Build relationships with internal and external stakeholders to ensure that opportunities to improve services delivery and team performance are realized.
• Producing and maintaining documentation and metrics pertaining to team processes and procedures
• Participation in the development and curation of runbooks corresponding to potential cybersecurity incidents, including integration of runbooks with external stakeholders in incident response
• Documenting and applying lessons learned through execution of operations processes to support continuous improvement
• Participation in an on-call rotation to lead major incidents pertaining to information security