AVP, Information Security (L10)

Synchrony

2d•Hybrid

About The Position

The AVP, Information Security is part of the Synchrony Joint Security Operations Center (JSOC) and is responsible leading cyber detection of information security alerts and investigating/reporting of major information security incidents supporting all business units. The candidate would have a both technical and people leadership position focused on the detection and response program operation consisting of detection, response, mitigation, reporting of cyber security incidents and conducting assignments for escalated incidents. The candidate is expected to have a strong understanding of both traditional on-premise security and cloud management plane (also known as cloud control plane) security. As a people leader candidate will be handling the day-to-day shift operations, documenting, and implementing the rotation schedule, mentoring junior analyst in the team, and providing feedback and tracking their technical competency.

Requirements

Bachelor’s degree and a Minimum 8 years of cyber security and incident response or security operations related to the detection, analysis, containment, eradication and recovery from cyber security incidents OR in in lieu of a degree, a minimum 10 years equivalent work experience.
Experience in the securities or financial services industry is a plus.
Experience managing SOC team in the past.
Experience of working in high performing teams and understand the dynamics of teamwork in a SOC environment
Strong verbal and written communication skills.
Ability to perform logical problem solving.

Nice To Haves

Industry certifications such as CISSP, GCIH, AWS Certified Cloud Practitioner, AWS Certified Security – Specialty, and other cybersecurity certifications are a plus.

Responsibilities

Respond to security incidents across a wide array of technologies, mitigate and contain impacts, coordinate remediation efforts, summarize and make recommendations to Sr. Management for improvements.
Provide technical leadership and expertise to enable proactive detection of potential security threats and recommendations for improvements in overall security posture.
Work with members of the Cyber Intelligence team to develop and implement threat detection logic to counter emerging cybersecurity threats.
Develop and enhance Detection and Incident Response processes and procedures leveraging relationships with front line operations teams and exploiting tools and systems.
Document findings and create detailed reports for constituency both in written and verbal formats.
Enumerate risks and prioritize mitigation efforts based on clear business priorities.
Coordinates IT resources to effectively perform incident response tasks.
Supervises formal incident response tasks and takes responsibility for successful execution of incident response plan.
Performs incident response tasks to contain exposures from an incident.
Authors incident response reports and lessons learned to include root cause analysis.
Identify and recommend process improvements.