Job
Description
Job Summary Continually monitor and evaluate security operations, investigative processes, automation, threat-hunting techniques, eDiscovery, legal holds, and forensic investigations and technologies. Provide security thought leadership across the security operational function as well as work with security engineering to provide feedback on current capabilities. Provide oversight for all security incidents, processes, and escalations to determine the root cause and extent of the incidents; be the escalation point and incident commander for severe security incidents. Identify cybersecurity architecture, goals, objectives, and metrics; analyze business needs and priorities for the protection of critical systems. Develop and manage operational playbooks, procedures, recommendations, and standards to ensure compliance with applicable security laws, regulations, and privacy legislation as appropriate. Manage the development, deployment, and execution of controls and defenses to ensure the security and risk mitigation of company infrastructure technology, information systems, and health sectors systems. Years of experience needed – You should have over 15 years of experience in cyber security and a minimum of 5 years' experience managing SOC functions. Technical Skills: Should have experience leading the security operations teams, providing management, leadership, and strategic direction. Should have monitored systems for cybersecurity vulnerabilities, threats, and events, overseen incident response planning, and led vulnerability audits and forensic investigations. Should have driven the analysis and trending of information and data from a large number of heterogeneous security devices. Certifications Needed: A Master's degree is a strong plus, with CISSP or CISM and GCFA certifications also a plus
