Director of Cyber Security Operations

Overview

The Director of Cyber Security Operations is a strategic leadership position tasked with the critical responsibility of safeguarding the organization's information assets. This role encompasses a broad spectrum of duties that include establishing and maintaining cybersecurity technical platforms and capabilities implementations to secure technology operations that are aligned with business objectives and regulatory requirements.

The individual in this role will be instrumental in identifying, evaluating, implementing, and managing information security-related technical capabilities, thereby ensuring the integrity, confidentiality, and availability of information. They will lead the security collaboration with other technology and business stakeholders, ensuring that the organization's cybersecurity posture is robust and resilient against known and emerging threats.

As a key advisor to senior management, the Head of Information Security Operations will provide both tactical and strategic support for technical and non-technical aspects of the program, including deployed or aspirational capabilities. They will maintain and communicate insights and recommendations on cybersecurity trends and best practices and support various stakeholders in ensuring cybersecurity requirements are applied throughout the organization.

This role requires a visionary leader with a deep understanding of cybersecurity principles and strong technical proficiency across a variety of security and non-security capabilities. The ideal candidate will possess strong communication and leadership skills, the ability to navigate complex business and regulatory landscapes, and a commitment to continuous improvement in the face of a rapidly evolving cybersecurity environment.

Responsibilities

• Provide strategic direction and leadership to the cybersecurity operations team, fostering a culture of innovation, collaboration, and continuous improvement.
• Lead and coordinate security operations center and incident response activities, ensuring timely resolution and mitigation of cybersecurity threats and incidents.
• Manage threat intelligence programs and lead efforts to proactively identify and mitigate emerging cyber threats.
• Implement and oversee vulnerability assessment and management programs to identify and remediate security vulnerabilities and configuration weaknesses in a timely manner.
• Manage tactical and strategic operations, maintenance, and engineering of security capabilities, tools, and systems, including Identity and Access Management solutions like directories and PAM, Security Incident and Event Management (SIEM), firewalls, endpoint protection, email security, vulnerability management, and various other information security and related controls
• Stay current with and ensure compliance with relevant regulatory requirements, trends, and industry standards and manage cybersecurity risks effectively. Participate in internal and external audits and assessments to demonstrate adherence to these standards.
• Recruit, mentor, and develop cybersecurity operations team members, fostering their professional growth and technical expertise.
• Work closely and form partnerships with other technology teams, business units, and senior management to align cybersecurity initiatives and requirements with business objectives.
• Develop, maintain, and continuously evolve a comprehensive cybersecurity capabilities portfolio for Resolution Life US
• Plan, execute, and oversee projects, ensuring they are completed on time and within budget
• Define, develop, and implement security policies, standards, and procedures and provide periodic Information Security reports
• Training, coaching, and mentoring more junior or new staff unfamiliar with the area or processes to not only understand what they are doing but also why they are doing it.
• Perform additional tasks and take additional responsibility as directed by the CISO.
• Embrace and operate in an agile working environment.

Qualifications