Overview
The Director of Cyber Security Operations is a strategic leadership position tasked with the critical responsibility of safeguarding the organization's information assets. This role encompasses a broad spectrum of duties that include establishing and maintaining cybersecurity technical platforms and capabilities implementations to secure technology operations that are aligned with business objectives and regulatory requirements.
The individual in this role will be instrumental in identifying, evaluating, implementing, and managing information security-related technical capabilities, thereby ensuring the integrity, confidentiality, and availability of information. They will lead the security collaboration with other technology and business stakeholders, ensuring that the organization's cybersecurity posture is robust and resilient against known and emerging threats.
As a key advisor to senior management, the Head of Information Security Operations will provide both tactical and strategic support for technical and non-technical aspects of the program, including deployed or aspirational capabilities. They will maintain and communicate insights and recommendations on cybersecurity trends and best practices and support various stakeholders in ensuring cybersecurity requirements are applied throughout the organization.
This role requires a visionary leader with a deep understanding of cybersecurity principles and strong technical proficiency across a variety of security and non-security capabilities. The ideal candidate will possess strong communication and leadership skills, the ability to navigate complex business and regulatory landscapes, and a commitment to continuous improvement in the face of a rapidly evolving cybersecurity environment.
Responsibilities
· Provide strategic direction and leadership to the cybersecurity operations team, fostering a culture of innovation, collaboration, and continuous improvement.
· Lead and coordinate security operations center and incident response activities, ensuring timely resolution and mitigation of cybersecurity threats and incidents.
· Manage threat intelligence programs and lead efforts to proactively identify and mitigate emerging cyber threats.
· Implement and oversee vulnerability assessment and management programs to identify and remediate security vulnerabilities and configuration weaknesses in a timely manner.
· Manage tactical and strategic operations, maintenance, and engineering of security capabilities, tools, and systems, including Identity and Access Management solutions like directories and PAM, Security Incident and Event Management (SIEM), firewalls, endpoint protection, email security, vulnerability management, and various other information security and related controls
· Stay current with and ensure compliance with relevant regulatory requirements, trends, and industry standards and manage cybersecurity risks effectively. Participate in internal and external audits and assessments to demonstrate adherence to these standards.
· Recruit, mentor, and develop cybersecurity operations team members, fostering their professional growth and technical expertise.
· Work closely and form partnerships with other technology teams, business units, and senior management to align cybersecurity initiatives and requirements with business objectives.
· Develop, maintain, and continuously evolve a comprehensive cybersecurity capabilities portfolio for Resolution Life US
· Plan, execute, and oversee projects, ensuring they are completed on time and within budget
· Define, develop, and implement security policies, standards, and procedures and provide periodic Information Security reports
· Training, coaching, and mentoring more junior or new staff unfamiliar with the area or processes to not only understand what they are doing but also why they are doing it.
· Perform additional tasks and take additional responsibility as directed by the CISO.
· Embrace and operate in an agile working environment.
Qualifications
· B.A./B.S. in CyberSecurity, Computer Science or IT-related field, or equivalent experience
· Professional Certification is preferred: CISSP, CISM, or equivalent
· 7+ years of related IT/IT Security technical and process experience, including previous lead/manager positions in a production operations environment.
· Comprehensive proficiency in core security principles and domains: Asset Security, Security Architecture, Risk Management, Communications and Network Security, Identity and Access Management, Assessment testing, and Software Development methodologies.
· Demonstrated deep technical proficiency in common security capabilities and tools such as Identity and Access Management, Security Incident and Event Management (SIEM), firewalls, endpoint protection, email security, vulnerability management, and various other information security and related controls
· Proficiency with AWS technologies is preferred
· Strong record of success in achieving business objectives, growth, and efficiencies
· Demonstrated strong problem-solving and analytical skills is critical
· Strong leadership skills with the ability to work with and influence people at all levels across the enterprise
· Great attention to detail with the ability to understand impacts on the broader organization
· Effective time management and prioritization
· Ability to work within tight time constraints and multiple priorities
· Excellent verbal and written communication skills
· Excellent interpersonal skills, teamwork, and collaboration
