Head of Detection Engineering - VP
About The Position
We are seeking a Head of Detection Engineering to report to the Managing Director of Cybersecurity Platform Engineering. You will employ the firm’s cyber detection capabilities within the Continuous Security Monitoring program to detect adverse cybersecurity events. You will ensure that State Street can effectively analyze security relevant logs to detect adverse cybersecurity events. This person owns detection related controls within the Continuous Security Monitoring program. This role is responsible for a mature detection engineering capability that requires continuous evolution. The team you will be joining is a part of Global Cyber Security a function that is vital to the company as it protects State Street and our clients from cyber threats.
Requirements
- Bachelor’s degree in a relevant field, or +15 years of experience in lieu of a bachelor's degree.
- 10+ years of managerial experience in cybersecurity.
- 4+ years of experience performing or managing detection engineering or similar activities.
- Knowledge of Security Information and Event Management (SIEM), and Endpoint Detection and Response (EDR) platforms; detection engineering processes.
- Knowledge of adversary tactics and techniques.
- Knowledge of networks, infrastructure, computing, identity and access management (IAM), data engineering, relevant software languages, and telemetry.
- Knowledge of anomaly and behavior analytics, statistics, probability, and social threat detection mechanisms.
- Excellent verbal and written business communication in English.
Nice To Haves
- Has led teams of 10 or more people.
- Has written articles, researched, and presented on cybersecurity topics.
- Has a theoretical approach, backed by evidence, how to employ detection capabilities to secure an organization.
- Has experience using artificial intelligence, including machine learning and large language models, to detection and respond to adverse cyber events.
- Willing and able to travel domestically and internationally up to 20% of the time.
Responsibilities
- Own the development of the global detection engineering strategy.
- Own the logging and monitoring standard and ensure it aligns to requirements.
- Ensure detection capabilities satisfy requirements from multiple sources.
- Ensure that detection engineering capabilities are effectively employed to detect adverse cyber events.
- Govern the development, modification and performance monitoring of Detection Rules.
- Ensures Detection Rules are enabled in multiple layers within the information technology environment.
- Maintain governance processes for detection rule development, modification, and retirement.
- Serve as the approval authority for changes to Detection capabilities.
- Influence the design and implementation of Continuous Security Monitoring.
- Govern the charter, planning, execution, reporting, and close-out detection engineering projects.
- Own the Detection Engineering’s portfolio of work.
- Ensure detection engineering maintains detailed documentation.
- Provide evidence to risk management, corporate audit, and others.
Benefits
- retirement savings plan (401K) with company match
- insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
- paid-time off including vacation, sick leave, short term disability, and family care responsibilities
- access to our Employee Assistance Program
- incentive compensation including eligibility for annual performance-based awards
- eligibility for certain tax advantaged savings plans
- inclusive development opportunities
- flexible work-life support
- paid volunteer days
- vibrant employee networks
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
