Director of Information Security Operations - Remote

Apply for this position Please mention DailyRemote when applying
Posted a day ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Job Description - Director of Information Security Operations - Remote

As Director of Information Security Operations, you are responsible for the day-to-day operations in protecting company information resources against security threats. Reporting to the CISO, you will evaluate existing technical capabilities and systems, and identify opportunities for improvements, while maintaining standard operating procedures and protocols to ensure Security Operations continues to meet operational requirements. You will also develop and execute strategies to improve the company's security posture.

What you get to do:
  • Develop holistic solutions that protect enterprise applications and data from unauthorized access, use, disclosure, modification or change
  • Develop strategy and roadmap for security infrastructure components, including intrusion prevention/detection, data security, identity and access management, network security, security event management
  • Be the focal point for security incident response planning, execution, and awareness. Respond to and troubleshoot security incidents, and provide on-call support
  • Identify and evaluate security gaps, and translate them into functional specifications
  • Work with Technology leadership, Product, and other partners to resource projects and manage the communication across all teams involved
  • Partner with Development, DevOps, and IT Operations teams on vulnerability assessments, analyzing vulnerabilities, determining severity, recommending remediation paths, eliminating or mitigating security gaps
  • Work with Technology teams to ensure security controls are integrated in the environment and risks are reduced to the acceptable level
  • Maintain a current understanding of the security threat landscape. Research and review latest technologies and trends
  • Manage daily security operations team activities; Coach Security Engineers
  • Perform other functions as assigned by the CISO

What you bring to the team:
  • 12+ years of experience in a security operation center environment, at least 4 year experience in managing Security Operations team
  • 7+ years of management experience
  • A history of working within a regulated environment
  • Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP)
  • Experience in, and knowledge of infrastructure security concepts including firewalls, DMZs, intrusion detection / prevention systems, network security, DLP, MFA, application security concepts, password management, RBAC, and access provisioning
  • Knowledge of security concepts across a broad IT landscape, involving on-premise, cloud, and SaaS solutions
  • Experience with security and control frameworks (FFIEC, NIST, COBIT, ISO) and experience mapping control frameworks to security practices
  • Experience representing technical viewpoints to diverse audiences, and in making prudent technical risk decisions
  • Familiar with applicable legal and regulatory requirements, including; Sarbanes-Oxley Act, 23 NYCRR500, CCPA, HIPAA, and Payment Card Industry (PCI)
  • A passion for information security and technology
- provided by Dice