Cybersecurity Operations Director

The Cybersecurity Operations Director role combines a comprehensive understanding of information security with the management and coordination skills required to analyze and implement best security practices and proper risk management across the corporate landscape. 

• Also responsible for monitoring, detecting, analyzing, mitigating, and responding to cyber threats against IT assets, networks, and information. 
• The environment includes local area networks/wide area networks (LAN/WAN), commercial Internet connections, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations.
• Take lead in performing security testing of applications, networks and infrastructures, including vulnerability assessments, penetration testing and manual testing techniques.

ESSENTIAL DUTIES AND RESPONSIBILITIES 

• Lead and manage a 24x7x365 Security Operations Center providing technical oversight.
• Lead staff to proactively identify, prevent and respond to security incidents.
• Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
• Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
• Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve governance.
• Responsible for team management, personnel scheduling, overall use of resources and initiation of corrective action where required for Security Operations Center.
• Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
• Creation of reports, dashboards, metrics for SOC operations and presentation to client.
• Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devices.
• Manage consulting engagements, with a focus on incident response and forensics. Provide both subject matter expertise and project management experience to serve as the “point person” for engagements.
• Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators.
• Ensures that disaster recovery and business continuity plans are in place and tested on a regular basis.

SUPERVISORY RESPONSIBILITIES

Direct supervision of the Security Services department. Carries out supervisory responsibilities in accordance with Company policies, procedures, and applicable laws. Responsibilities include interviewing, hiring, promoting and training employees; planning, assigning, directing and approving work; appraising performance; rewarding and disciplining employees; addressing complaints and resolving problems; and recommending salary adjustments.

QUALIFICATIONS

Education and Experience:

• Bachelor’s degree in information technology or related field and combination of experience in the following areas:
  • 10 years in security and/or risk assessment/management related field
  • Hands on experience with testing frameworks such as the PTES and OWASP
  • Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS X, VMware/Xen, and cloud technologies such as AWS, Azure, or Google Cloud
  • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.

• Excellent organizational and time management skills.
• Critical thinker and problem solver.
• Experience in performing vendor management.
• Detailed orientated with effective written and communication skills.

Certifications and Licenses:

• CISSP, GIAC, CISSP, CEH, OSCP, or equivalent certifications a plus