IT Security Operations Center Manager

About The Position

Requirements

• Bachelor's degree in computer science, computer engineering, information technology with a focus on cybersecurity, or relevant field with seven years of management and industry experience or ten years of management and relevant cybersecurity related experience.
• A thorough understanding of cybersecurity defense hygiene and industry best practices (like MITRE ATT&CK tactics) and risk management frameworks (like NIST, COBIT, or OCTAVE).
• Strong knowledge of financial services cybersecurity regulations and controls.
• Significant experience leading security incident response activities (including detection, analysis, containment, response, and prevention procedures).
• Experience with building, defining, and leading 24x7 SOC teams and efforts.
• Experience with vendor contracting and management.
• A thorough understanding of Cybersecurity attack and defense methodologies.
• Ability to work independently, while reporting back to team leader/manager on any issues or concerns in a timely fashion.
• Excellent learning, teamwork, relationship management, influence, and creativity skills.
• Excellent customer service skills.
• Excellent oral and written communication skills.

Responsibilities

• Lead the 24x7 incident detection and response team and day-to-day efforts.
• Lead efforts with detection, containment, and mitigation in the event of a breach, and aid the corporate response team (General Counsel, HR, Marketing, etc…) as needed.
• Update and maintain the Incident Response Plan's processes and procedures to keep current with industry best practices, regulatory requirements, and the threat landscape.
• Lead efforts in ongoing tabletop and red/blue team exercises to continue implementing better defenses and quick incident detection and response.
• Research and understand the regulatory and compliance mandates to ensure cybersecurity practices fulfill these requirements.
• Lead efforts with external and internal audit control compliance and responses to due diligence inquiries.
• Review industry news, intelligence reports, and emerging technologies to ensure MedPro is taking the proper action to mitigate risk and improve defenses.
• Provide recommendations and assistance with developing short and long-term enterprise-wide cybersecurity goals and objectives.
• Assist with security assessments and help provide recommendations on applications, vendor, and business & technical team processes and practices used by MedPro.
• Work closely with and provide support to the cybersecurity technical team.
• Assist with the execution and completion of cybersecurity related projects.
• Perform other related duties.

Benefits

• medical, vision and dental insurance options
• life and accident insurance
• 401(k)
• short-term and long-term disability insurance