Advanced Defensive Architecture Engineer VP-4

About The Position

Requirements

• 8 years or more experience in Security Architecture, Advanced Threat Hunting, data analytic, or investigative teams.
• Proven ability to successfully work remotely, travel when needed, and operate across multiple geographic time zones.
• Experience in taking Threat Hunting related requirements and turning them into final products or presentations on time and on point.
• Experience in developing strategies and systems for cross-functional detection and elimination of fraudulent behavior.
• Ability to perform forensics to validate security findings and experience using EDR and other forensic tools.
• Experience with SIEM, Network Security Monitoring tools, and Endpoint Detection & Response.
• Oversee the production of investigative reports and analysis that pertinent to evidence obtained during investigations.
• Strong knowledge of cyber security threat actors particularly their tactics, techniques, procedures, tradecraft, and noteworthy attacks.
• Exceptional communications skills (oral and written) with a history of successfully engaging with groups such as Boards of Directors, executive management teams, and senior business leaders both internally and externally.
• Understanding of technology systems such as networks, applications, servers, cloud, authentication, and emerging technologies.
• Must be a self-starter, self-motivated, and able to work independently with little oversight while managing a large, globally distributed team.
• Able to develop and operate within a set financial budget.

Nice To Haves

• At least 1 year in artificial intelligence and security tooling.
• Bachelors Degree and/or Certifications in computer forensics, information security, and similar.
• Experience working with information security teams such as fusion centers, security operations centers, vulnerability assessment, vulnerability threat management, security incident management, cyber “hunt,” and big data analysis.
• Experience working with public and private sector law enforcement agencies and external audit organizations for investigations, audits, and similar activities.

Responsibilities

• Executing the vision, strategy, and mission of the Advanced Defensive Architecture organization.
• Work under tight deadlines to handle multiple, detail-oriented tasks.
• Develop and maintain Advanced Cyber Threat & Forensic related policies, standards, procedures, and guidelines.
• Assist with the selection, implementation, and improved use of advanced monitoring tools.
• Research and implement technology, code, and other configurations for threat detection and response, in cloud and on-premises environments.
• Build on and improve logging and monitoring infrastructure in collaboration with Infrastructure, Engineering, and Operations teams.
• Use automation to dramatically improve detection and response speed and effectiveness.
• Respond to threats in real time, through diagnosis, communication, and remediation.
• Execute response efforts against emerging Indicators of Compromise (IoC) and conduct research of new TTPs using all-sources.
• Develop Advanced Defensive Architecture metrics, and automations to implement those metrics.
• Brief State Street’s executive management team, senior leaders, and information security professionals on cyber threat trends, emerging challenges and relevant insights that relate to State Street’s businesses.
• Support the development of defense in depth protections by working with third-party providers, including working with threat intelligence, threat analysis, and threat remediation.
• Actively liaise with the cybersecurity community to include industry associations, peer financial institutions, and information sharing communities.
• Closely coordinate with, and support, other State Street information security teams such as the Cyber Security Fusion Centers, Security Operations Centers, Vulnerability Assessment, Investigations, Cyber “Hunt” Teams, Big Data Analysis, Crisis Management, and Exercises.
• Engaging with audit, compliance, and regulatory bodies globally.
• Advise and support information and threat hunt initiatives with peers, governments, and sharing organizations world-wide.
• Reduce State Street security risks by leveraging controls and minimizing weaknesses.
• Support the Managing Director to understand, manage and drive of information security risks on behalf of executive leadership.
• Recommend changes in security policies and practices in accordance with changes in local or federal law.

Benefits

• Retirement savings plan (401K) with company match
• Insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• Paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• Access to our Employee Assistance Program
• Incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
• Eligibility for certain tax advantaged savings plans
• Inclusive development opportunities
• Flexible work-life support
• Paid volunteer days
• Vibrant employee networks