SR. MANAGER – INFORMATION SECURITY OPERATIONS

One of the world’s leading designers, manufacturers and marketers of automotive products for original equipment and aftermarket customers, with 2019 revenues of $17.

5 billion and approximately 78,000 team members working at more than 300 sites worldwide.

RESPONSIBILITIES :

• Manages response to global security incidents including coordination and leadership during security incidents and malware outbreaks.
• Implement and manage follow the sun model with global stakeholders.
• Responsible for the implementation and support of technical, process, and reporting elements of the security monitoring and incident programs
• Manages analysis and reports of operational security key performance and risk metrics to drive program improvements.
• Provides in-depth technical direction and support to managed security service providers; proactively identifies, tracks, and mitigates risk to IT systems and operations.
• Monitors and documents indicators of compromise (IOCs) related to advanced, targeted attackers.
• Develops and maintains security-related monitoring and logging procedures across infrastructure, applications and databases globally for the company.
• Guide the Vulnerability Management Plan to facilitate, monitor, and support the remediation and reporting activities of the VM program.
• Recommends and implements threat countermeasures and controls.
• Develops partnerships with other business and IT functions involved in security and privacy matters.
• Develops relationships with security vendors and external security experts.
• Provides Information Security expertise and guidance to internal and external IT project teams and IT.
• Coordinates with environment owners for investigation and remediation of monitoring alerts.
• Monitors and documents indicators of compromise (IOCs) related to advanced, targeted attackers.
• Meets regularly with subject matter experts both internal and external to the Security team to discuss relevant threats and their effect on the analysis of vulnerability criticality and prioritization.
• Analyzes threat intelligence information to identify patterns and root causes to provide decision support for the organization.

Required Experience / Education :

Bachelor’s Degree in Information Technology related field or commensurate experience.

SKILLS & EXPERIENCE :

• 5+ years of working-level experience securing IT systems.
• 3+ years of experience in a security incident or related role with experience in delivering operational process improvements.
• 3+ years of experience managing a team of security professionals.
• Certified Information Systems Security Professional (CISSP) or equivalent preferred.
• Certified Incident Handler (GCIH) certification or equivalent preferred.
• Experience in assessing and mitigating risk.
• Experience in a large-scale global IT enterprise environment.
• Experience with administration and management of Windows, Linux, UNIX, or mobile operating systems.
• Identifying, capturing, containing, and reporting malware.
• Knowledge of incident categories, incident responses, and timelines for responses.
• Knowledge of incident response and handling methodologies.
• Knowledge of system and application cyber security threats and vulnerabilities
• Preserving evidence integrity according to standard operating procedures or national standards.
• Knowledge of security event correlation tools.
• Ability to effectively prioritize multiple objectives and manage through a fast-paced, changing environment.
• Highly collaborative with the ability to influence and drive behaviour across the organization with other teams
• Analytical problem-solving capabilities and strong decision-making skills
• Ability to effectively communicate verbally and in writing with individuals across all levels of the organization.
• Knowledge and experience working across a geographically and culturally diverse organization.

If of interest, please reach out today!