Director of Cyber Threat Management and Response.

Overview

Required skills & experience: Education • Bachelor's Degree in Computer Science, Information Technology, Business, or related field required. • Master's Degree in Computer Science, Information Technology, Business, or related field preferred. Experience • 8 years deep experience in leading cyber security programs, operations, assessment/testing, cyber security architecture/infrastructure, incident response and threat management services and teams, including real world experience in coordinating cyber risks, incidents and breaches required. • 2 year’s experience in a management role, leading people required Licenses and Certifications CISSP - Certified Information Systems Security Professional preferred upon hire What you need to know : Client is seeking to hire a Director of Cyber Threat Management and Response. This position will lead the Threat Management, Corporate Cyber Incident Response programs and the Cyber Threat and Incident Response team. This role will: • develop and coordinate incident response plans with legal, privacy, compliance, people and culture, corporate communications and system preparedness. • lead cyber security architecture development and operations activities. • ensure cyber security platforms and managed services are running effectively and performance standards and measures have been established. • lead threat intelligence services and coordinate with external threat intelligence sharing activates. • coordinate the cyber security insider threat program and behavioral analytics systems that support this program. Location: Arlington, TX Job Description: Security Operations Service Delivery • Work with executive leadership to set security operations service delivery strategy. • Direct delivery of cyber incident response, investigation, threat intelligence and vulnerability management services. • Lead the development, architecture and operations of security analytics/monitoring systems and protection technologies. • Partner and collaborate with lines of business to protect, detect and respond to cyber threats. • Direct managed service providers and service level agreements. Relationship Management • Manage relationships between Cyber Threat and Incident Response team and other organizational teams. • Plan and organize daily Security Operations, program activities and managed services providers. • Working with stakeholders develop cyber security policy, operational standards and processes. • Direct and coordinate cyber risk remediation activities with stakeholders. • Work with application and system owners to ensure effective solutions are implemented appropriately. • Continually test and measure the effectiveness of the organizational structure, identify improvements, and implement security measures to meet system needs. Program Management • Work with executive leadership to develop program level strategy. • Develop and direct the corporate Threat and Incident Management Programs. • Develop and coordinate Corporate Cyber incident response plan. • Oversee the development, collection and management of program metrics and measures. • Develop and coordinate vulnerability management program. • Lead program committees and projects. Budget Planning, Contract Management, Staff Development • Develop and maintain an annual budget. • Provide monthly reporting related to actual vs. budgeted spend, as well as forecasting remaining year expenditures. • Manage costs and contracts associated with the delivery of security operations service delivery. • Utilize internal and external resources to stay abreast of technology trends, as well as potential industry shifts. • Developing team through constant coaching and feedback, providing challenging goals and guaranteeing your people have the skills, knowledge and opportunities to grow. • Define, and validate implementation of, tactics for the development of staff within reporting structure. Policy, Standards and Procedures • Oversee the development and maintenance of standard procedures and playbooks related to program and security operations service delivery. • Ensure that all necessary documentation is complete and followed. • Maintain accurate records for all systems and procedures. Continuous Improvement and Effectiveness • Plan and organize daily, monthly and quarterly security operation service delivery metrics and measures , inspect staff execution of defined processes, and ensure complete and accurate reporting of Key Performance Indicators (KPIs). • Day to day operations of the security operations service delivery practice, implementing and measuring a Quality Assurance and Constant Improvement methodology. • Continually test and measure the effectiveness of programs, processes and team, identify improvements, and implement them. • Validate the effectiveness of security systems/tools including protection systems, sensors, scanners, log collection, correlation and search, and tune as necessary. The ideal candidate will possess the following qualifications: Skills • Leadership skills, complex decision-making, written and verbal communications skills, productivity S/W, complex problem-solving, organization/prioritization. • Deep experience in leading cyber security operations, assessment/testing, cyber security architecture/infrastructure, incident response and threat management services and teams. • Experience in managing a team of greater than 10 employees. • Experience in coordinating cyber incidents and breaches. • Understanding of cybersecurity analytics, measurement and data science. • Expert and demonstrated knowledge of security infrastructure, incident response, threat and vulnerability management. • Must have in-depth knowledge of security controls and processes. • Must have exceptional analytic and project skills, the ability to make decisions, plan, schedule and organize work, work in teams, and customer service skills. • Capable of managing vendors, contractors, and a team up to 11 people to perform customer support, day to day operations, security operations functions, and projects. • Expertise in capital and operational expense budget planning , financial management, and resource. management (including the ability to develop cost-effective approaches to organizational needs. • Ability to communicate technical security information with all stakeholders and customers in straightforward terms, making complicated technical issues relatable for all. • Experience with cybersecurity governance, risk and compliance functions, threat modeling, identity and access management and cybersecurity operations. • Experience presenting results of assessments, findings, and other project information to customers with professional presentations skills and demeanor, facilitating meaningful discussion and feedback.. • Demonstrated ability to build, lead, and develop effective, cohesive and collaborative management and operational teams.

Benefits

Company

This health system is one of the largest faith-based, nonprofit health care delivery systems in the United States. It has 29 hospital locations including 19 acute-care hospital locations, five short-stay hospitals, two behavioral health hospitals, two rehabilitation hospitals and one transitional care hospital, all owned, operated, joint-ventured or affiliated with the system. It has more than 3,900 licensed beds, employs more than 24,000 people, and counts more than 6,000 physicians* with active staff privileges at its hospitals.