The role manages the overall security and operations team and leads the day-to-day security of Aspen's perimeter/edge defenses, endpoint security, email security, threat and vulnerability management, SOC, IAM, and overall transformation and maturity of the security initiatives.
It requires active involvement in new projects to ensure security requirements are designed and delivered as part of the project life cycle. They will be able to demonstrate the ability to communicate and promote security requirements to a range of stakeholders. They will help to develop IT security processes/procedures to achieve improved efficiency/effectiveness and audit compliance.
Key Responsibilities:
* The role requires that security processes and procedures be followed covering a range of activities: threat/vulnerability assessment, vulnerability management, security monitoring, security alert handling, incident response.
* Able to manage a diverse workload and communicate effectively with technical teams, project managers, and key stakeholders.
* As we move to a 'Cloud-First' strategy, strong Azure/M365 experience is a must. Windows Defender, Sentinel, Purview are all a requirement for this role.
* Hands-on activity on regular operational tasks may also be required to support ongoing BAU activities.
* The processes/procedures in place must be developed, documented, and implemented/operational with evidence of controls produced as KPI and KRI to evidence operational performance.
* Manage the deployment and administration of technical security initiatives to enable adequate protection against the evolving cyber threat landscape.
* Maintain, deploy, upgrade, and troubleshoot various security solutions across detect, protect, respond, and recover.
* Lead security assessments and risk analysis and make recommendations to improve overall security.
* Manage the threat and vulnerability program to ensure timely remediation of vulnerabilities in line with policy and compliance requirements.
* Work with internal teams to ensure adequate security solutions are engineered and deployed across environments/platforms to mitigate security risks.
* Manage the integration of security solutions, tools, and platforms with internal systems to improve organizational security posture and maturity.
* Design, implement, and maintain procedures and controls necessary to ensure the protection of all information system assets against intentional or inadvertent misuse, access, modification, disclosure, or destruction.
* Investigate security incidents and breaches by operationalizing technical incident response efforts, as an integral part of the Security Incident Response Team.
* Provide people leadership, mentoring, and training on relevant networks, tools, policies, and procedures to direct reports including security analysts and engineers.
* Maintain up-to-date knowledge of the latest security trends and technology and recommend appropriate security products and solutions for various platforms.
* Manage relationships with third-party managed security service providers.
* Perform all duties inherent in a supervisory role.
* Manage a team of offshore Cyber Analysts.
Skills and Experience:
* 5 years+ of information security or cyber security experience.
* Experience and/or certifications which provide evidence of Information/Cyber Security capabilities.
* Experience and/or certification which provide evidence of Infrastructure knowledge/capabilities.
* Strong Cloud experience, ideally recently with MS Azure.
* Experience with the implementation of security tools such as EDR, NDR, SIEM, Data Leakage.
* Experience in implementing various security controls, such as NIST, SOX, GDPR, CSA, etc.
* Prevention, Automation and Orchestration, Encryption, etc.
* Experience with DarkTrace, Proofpoint, Thales (DPOD/CipherTrust), Zscaler are a Plus.
Work Experience:
* Recent Azure experience to include Defender, Sentinel, Purview, MS O365 - Required.
* Strong experience of operational security activities such as vulnerability management, security monitoring, alert/incident response, security reviews - Required.
* In-depth knowledge of security technologies such as Firewall, SIEM, vulnerability management, email security, IAM - Required.
* Hands-on implementation experience deploying, maintaining, and administering security technologies such as Endpoint security, Firewalls & IDS, DLP, Reverse Proxies, CASB, MDM, Vulnerability and Patch management - Required.
* Excellent knowledge of secure network design and system/security hardening - Required.
* Advanced knowledge of incident response and threat mitigation - Required.
* Strong understanding of cloud-based architecture and models - Required.
* Extensive Windows experience including deep knowledge of log file analysis, log auditing and common configuration deficiencies - a Plus.
* Experience in one or more programming languages for scripting and automation - a Plus.
* Managing an offshore team - a Plus.
Education/Qualifications:
* Degree is preferable.
* Microsoft certifications are a Plus.
* SANS GSEC/GCED/GSOC or similar are a Plus.
* CISSP/CISM/CISA are a Plus.
We are committed to offering an inclusive recruitment experience. If you require accommodations because of a disability or health condition, please let us know.
#J-18808-Ljbffr