The Director, Global Cyber Security Operations has strong and demonstrable hands-on expertise in Managed Security Service Provider (MSSP), network security monitoring and incident response. He/She will be open-minded, bring fresh ideas to the outsourced (MSSP) SOC team and be ready to protect, defend and respond to information security related events. Also, he/she will lead the following areas Predictive monitoring, Threat and Vulnerability Management, Threat Hunting and Cyber Security Risk Assessments. This will be accomplished by pulling together information from a variety of systems; and normalizing and correlating the information. The SOC provides real-time (or near real-time) detection and reaction services for information security incidents within the company. Decision-making is one of the most meaningful traits.
Perform in-depth network security analysis and work with the SOC analyst team conducting incident response, event analysis and threat intelligence for the corporate enterprise
Provide both strategic analysis and near real-time auditing, analyzing, investigating, reporting, remediation, coordinating and tracking of security-related activities for the corporate enterprise
Analyze data and prepare reports that document vulnerabilities from network-based charges and recommends actions to prevent, repair or mitigate these vulnerabilities
Provide technical mentoring to other team members
Establish and craft standard operating procedures for a variety of computer network defense (CND) related tasks/positions within the team
Provide technical expertise on post-event network security logs and trend analysis
Review security events that are detrimental to the overall security posture; analyze and detect sophisticated and nuanced attacks and discern false positives and provide results to management
Perform correlation of events from a variety of network, enterprise and host collection sensors
Coordinate and liaise with other groups within the company and external auditors with information regarding intrusion events, security incidents, and other threat indications and warnings information
Demonstrate both technical acumen and critical thinking abilities
Experience with trouble ticketing and systems management tools
Coordination and partnering of issues with the Incident Response team
Provide detection and response to security events and incidents within the Network
Web application vulnerability scanning
Security log management and monitoring
Intrusion detections and prevention systems operations
Maintaining information security metrics
Strong knowledge of leading MSSP program
Security log management
Strong analytical, documentation, and interpersonal skills
Solid understanding of IDS & IPS technologies
Solid understanding of Windows event log analysis
Experience with enterprise information security data management tools such as ArcSight, Splunk, QRadar; etc.
Understanding of network traffic analysis
Process planning, organizational, and motivational skills, ability to write clearly and succinctly in technical and non-technical formats is a requirement.
Ability to speak both extemporaneously and in formal settings.
Experience in root cause analysis, industry benchmarking, survey evaluation and data interpretation is required.
Have the ability to apply logic and reason to take on complex problems.
Able to infuse innovation and creativity to strategic plans.
Possess knowledge in the area of emergency/disaster management, physical security, critical incident stress management, risk management and business resiliency
Familiar with emergency procedure protocols and regulatory interfaces.
Experience in leading and managing a team.
Strong analytical, critical thinking and problem-solving skills.
Ability to establish and maintain multi-functional and positive working relationships.
Demonstrable ability to influence key business partners.
Ability to build strategic vision and drive organizational change
Education, Experience & Skills
15+ years of applicable experience and a minimum of 8 years of supervisory experience
Strong organization and planning skill with the ability to work in and define ambiguity/gray areas.
Advanced computer skills and proficiency.
Strong inter-personal and networking skills with a demonstrable ability to work in a team environment.
Ability to work under stressful and tight deadlines as well as the ability to lead in a dynamic environment.
Above average computer hardware and software knowledge.
Excellent verbal and interpersonal skills.
Ability to multi-task, discerns patterns in details.
Think through problems for logical solutions and remain calm and professional under stress.
Strong decision-making ability during both crisis and non-crisis situations.
Able to work with highly confidential information.
Ability to speak clearly, give direction, and provide mentorship to employees and security staff during emergencies is desired.
Able to work and communicate effectively with all levels of leadership.
Bachelor’s degree in computer science + or a related discipline
Five to ten years of experience in the security field highly desirable.
CISSP, CISM, GIAC certifications highly desirable
We recognize the need for on-going skill enhancement and support continued learning through on-the-job assignments, training programs, tuition assistance, professional memberships and professional conference attendance. We value talent, develop employees and offer promotional opportunities so our staff can achieve personal and professional growth.
Type/keyboard, visual acuity, good eye/hand coordination, stand, walk, sit, twist/turn, climb, reach outward, reach above the shoulder, hand dexterity, bend, squat/kneel, sense of feel, sense of hearing. Use phone, copier, computer, copier, and hand tools. Organize/coordinate, analyze/interpret, calibrate precise measurements, problem-solve, make decisions, plan, communicate, prepare written communications, and prepare transaction documents. Work outdoors, noise above conversation level, hot/cold temperatures, high humidity, ventilation needed, multiple locations, restricted access laboratory.
Diversity and inclusion are an integral part of our culture. We are committed to attracting, developing, and retaining the best diverse talent. Diversity fuels our business growth. It drives innovation in the products and services we develop, in the way we solve problems, and in the way, we serve the needs of an increasingly global and diverse customer and partner base.
We are committed to welcoming, respecting and celebrating the unique attributes of our Employees and Communities.
We recognize the value that diversity contributes to our global organization and the competitive advantage we can maintain by having a broad range of talents, perspectives, and ideas with a commitment to continuously improving our business.
We ensure every employee, applicant, vendor, and shareholder is treated fairly and equitably, and we respect the attributes they offer. Examples of such attributes may include race, religion, color, gender (including pregnancy), age, marital status, national origin, disability, military/veteran status, sexual orientation, gender identity, and any characteristics protected by local, state, provincial and federal law.
Protecting and Enhancing 50 million lives by 2025 focuses our energy to improve the quality of life for millions of individuals around the world, giving them the opportunity to experience the fullness of life.
Our drive towards this vision informs all of our actions—whether it is our approach to product development, manufacturing, encouraging employee health and wellness or giving back to the community—we strive every day to achieve this shared goal