IT Security Operations Lead
Apply NowJob details
This role requires an active involvement in new projects to ensure security requirements are designed and delivered as part of project lifecycle. They will be able to demonstrate the ability to communicate and promote security requirements to a range of stakeholders. They will help to develop IT security process/procedures to achieve improved efficiency/effectiveness and audit compliance. Key Responsibilities: Supporting the Group CISO, you will help lead Security Program to manage, monitor, and improve the daily operations of the Cyber Security program, oversight of the annual and ongoing risk assessment process, development, implementation, and maintenance of policies and procedures, ensuring the confidentiality, integrity and access of electronic PII and of monitoring program compliance as well as investigation and tracking of incidents and breaches and in compliance with federal and state laws. Our Aspen Values are expected to be reflected in the delivery and performance of every role. The role requires that security processes and procedures be followed covering a range of activities covered by this role: threat/vulnerability assessment, vulnerability management, security monitoring, security alert handing, incident response. Able to manage a diverse workload, and able to communicate effectively with technical teams, project managers and key stakeholders. As we move to a ‘Cloud-First’ strategy, strong Azure/M365 experience is a must. Windows Defender, Sentinel, Purview, are all a requirement for this role. Hands on activity on regular operational tasks may also be required to support on-going BAU activities. The processes/procedures in place must be developed, documented and implemented/operational with evidence of controls produced as KPI and KRI to evidence operational performance. Manage the deployment and administration of technical security initiatives to enable adequate protection against the evolving cyber threat landscape. Maintain, deploy, upgrade, and troubleshoot various security solutions across detect, protect, response and recover. Lead security assessments and risk analysis and makes recommendations to improve overall security. Manage the threat and vulnerability program to ensure timely remediation of vulnerabilities in line with policy and compliance requirements. Work with internal teams to ensure adequate security solutions are engineered and deployment across environments/platforms to mitigate security risks. Manage the integration of security solutions, tools and platforms with internal systems to improve organizational security posture and maturity. Design, implement and maintain procedures and controls necessary to ensure the protection of all information system assets against intentional or inadvertent misuse, access, modification, disclosure or destruction. Investigate security incidents and breaches by operationalizing technical incident response efforts, as an integral part of the Security Incident Response Team Provide people leadership, mentoring and training on relevant networks, tools, policies, and procedures to direct reports including security analysts and engineers. Maintain up-to-date knowledge of the latest security trends and technology and recommends appropriate security products and solutions for various platforms. Manage relationships with third-party managed security service providers. Perform all duties inherent in a supervisory role. Manage a team of offshore Cyber Analysts. Skills and Experience: Functional / Technical Competencies: 5 years of information security or cyber security experience Experience and/or certifications which provide evidence of Information/Cyber Security capabilities. Experience and/or certification which provide evidence of Infrastructure knowledge/capabilities. Strong Cloud experience, ideally recently with MS Azure. Experience with implementation of security tools such as EDR, NDR, SIEM, Data Leakage. Experience in implementing various security controls, such as NIST, SOX, GDPR, CSA, etc. Prevention, Automation and Orchestration, Encryption, etc. Experience with DarkTrace, Proofpoint, Thales (DPOD/CipherTrust), Zscaler are a Plus. Work Experience: Recent Azure experience to include Defender, Sentinel, Purview, MS O365 - Required Strong experience of operational security activities such as vulnerability management, security monitoring, alert/incident response, security reviews – Required. In-depth knowledge of security technologies such as firewall, SIEM, vulnerability management, email security, IAM – Required. Hands-on implementation experience deploying, maintaining, and administering security technologies such as Endpoint security, Firewalls & IDS, DLP, Reverse Proxies, CASB, MDM, Vulnerability and Patch management - Required. Excellent knowledge of secure network design and system/security hardening – Required. Advanced knowledge of incident response and threat mitigation – Required. Strong understanding of cloud-based architecture and models – Required. Extensive Windows experience including deep knowledge of log file analysis, log auditing and common configuration deficiencies - a Plus. Experience in one or more programming languages for scripting and automation - a Plus. Managing an offshore team – a Plus Financial services experience - Preferred Education / Qualifications: Degree is preferable. Microsoft certifications are a Plus. SANS GSEC/GCED/GSOC or similar are a Plus. CISSP/CISM/CISA are a Plus.
Apply Now