Team Leader - Cyber Security Operations

About The Position

Requirements

• Bachelor’s degree or equivalent combination of applicable experience
• Certified Information Systems Security Professional (CISSP) certification required within 12 months of hire
• Minimum 7 years of experience to include any combination of the following:
• Hands on experience in a security incident / response position
• Establishing policies and procedures to comply with regulatory standards
• Designing access control models for cyber intelligence and threat management
• Leading or participating as a member of a security incident response team
• High attention to detail
• Proven critical thinking and analytical skills to obtain relevant information/identify essential elements, and examine inconsistencies. Ability to Identify causes and key factor, and identify alternative solutions
• Demonstrated experience communicating complex security issues to various levels within the organization; written and verbal
• Strong consulting and collaboration skills with an ability to lead cross-functional teams through informal leadership
• Demonstrated experience providing advice and counsel to stakeholders through building relationships, anticipating stakeholder needs, etc
• Proven experience in being creative with solution generation
• Formal leadership experience or informal leadership experience typically gained through project management or by coaching/mentoring others by providing guidance and feedback to help an employee to strengthen their knowledge and skills
• Report writing and data manipulation skills, with the ability to tell the story behind the data
• Travel required up to 5%

Nice To Haves

• Experience in incident response leadership and security awareness initiatives, including post‑incident analysis, lessons learned, and driving improvements in security culture.

Responsibilities

• Provide leadership and day-to-day management of financial and human resources, primarily focusing on employee coaching, development, performance improvement, coordination and budgeting for staff and department(s) specific functions/services. Support business objectives and produce results that are effective, accurate, timely, and on target to meet business and stakeholder needs.
• Develop comprehensive reporting for senior management to report key metrics and trends in breaches to Wellmark systems and make recommendation of resolution.
• Build and lead a threat and vulnerability management team responsible for attributing information security attacks to threat actors.
• Review and analyze measurements provided by staff on the effectiveness of security controls to Corporate Information Security (CIS). Provide guidance and leadership to team members, ITS leadership and other business stakeholders.
• Manage and support threat management investigations for security incidents, intrusion attempts, and system anomalies, ensuring the team’s effective collaboration and communication with appropriate stakeholders. Provide thought leadership and guidance on action plans and resolution.
• Responsible for the implementation, management and direction of threat management policies, principles, procedures, and practices that comply with related legal, regulatory, policy and professional standards. Foster support and understanding of the Enterprise Information Security Program.
• Serve as an active member of the Security Incident Response Team (SIRT) and participate in security incident response efforts. Co- ordinate the response to security incidents and advise on risk remediation plans. Act as a lead coordinator on information security incident investigations.
• Provide technical and business expertise in the development, support, and maintenance of Wellmark’s security systems, tools, and technology based on industry trends, standards, best practice, and emerging technologies/solutions. Ensure standards are recommended, documented, approved, and communicated within area of responsibility.
• Partner with Security Official to strategically manage vendor risks.
• Perform ad-hoc penetration tests on Wellmark systems and applications and assess issues identified through the testing activities for remediation.
• Other duties as assigned.