Job Description:

As the Executive over our SIEM/SOAR program, you will lead multiple teams in the design, development, test, and delivery of innovative products to identify and reduce security risks for the company.   The executive leader will contribute to our mission of safeguarding our valuable assets and data from evolving cyber threats.  The leader of this dynamic team and make a significant impact on our organization's security posture and lead us through our next generation SIEM/SOAR program.  This role is highly visible to senior leadership, auditors, and regulators.

The successful candidate will have demonstrated success in building software products, managing engineering teams, coordinating large-scale projects, effectively communicating with executive and technical audiences, and moving quickly to achieve outcomes. This is a technology leadership role requiring software engineering experience to excel but not focused on personal delivery of code.

Key Responsibilities:

Cross Team Leadership
•    Works across business and technology at the senior-executive level to provide security solutions that minimize the attack surface and protect the company from cyber-attacks.
•    Manages relationships with business, technology executives, sponsors, and vendors to identify and address vulnerabilities and respond to cyber security attacks.
•    Helps to resolve organizational impediments by sponsoring opportunities that improve processes, while identifying new opportunities to enhance efficiency and gain a competitive advantage.
•    Conducts portfolio level resourcing and financial management activities.

Team Leadership and Development:
•    Manage and mentor a team of talented Security Information and Event Management (SIEM) developers, fostering a collaborative and high-performing work environment.
•    Set clear objectives, provide regular feedback, and conduct performance evaluations to enhance the team's capabilities.
•    Promote professional growth by organizing training sessions and encouraging employees to pursue relevant certifications and industry advancements.

SIEM Software Solution Architecture and Design:
•    Collaborate with internal stakeholders, including cybersecurity experts, IT operations, and business units, to understand security requirements and business goals.
•    Architect and design scalable and resilient SIEM solutions that can effectively handle diverse data sources and complex security analytics use cases.
•    Conduct regular reviews and refinement of the architecture to accommodate changes in the threat landscape and business needs.

Development and Implementation:
•    Lead the SIEM development team in coding, testing, and deploying custom applications to enhance the capabilities of our SIEM platform.
•    Implement integrations with various data sources, security tools, and external threat intelligence feeds to enhance threat detection and response capabilities.
•    Ensure compliance with coding standards, security best practices, and data privacy regulations throughout the development lifecycle.

Security Incident Management:
•    Develop and refine strategies for proactive threat detection, incident identification, and efficient response and remediation.
•    Conduct thorough analysis of security incidents, ensuring root cause analysis, and implement corrective actions to prevent future occurrences.
•    Collaborate with the Incident Response team to enhance incident handling and escalation procedures.

Performance Optimization and Scalability:
•    Continuously monitor the performance of the SIEM system and identify areas for optimization and enhancement.
•    Evaluate and implement appropriate infrastructure upgrades to support increasing data volumes and maintain optimal system performance.
•    Conduct load testing and performance tuning exercises to ensure the SIEM platform can handle peak operational loads.

Compliance and Policy:
•    Ensure adherence to industry standards, regulatory requirements, and internal security policies in all aspects of SIEM development and operation.
•    Collaborate with the Compliance team to fulfill audit requests and participate in security assessments and penetration testing exercises.

Research and Innovation:
•    Stay informed about the latest cybersecurity threats, trends, and emerging technologies relevant to SIEM development and security operations.
•    Evaluate new SIEM tools, technologies, and techniques to improve the organization's security posture and stay ahead of potential threats.

Qualifications:

•    10+ years of proven experience in SIEM development and security operations, with a successful track record of leading SIEM projects from conception to implementation.
•    Proficient programming experience in languages such as Python, Java, or C++, with a solid understanding of data structures and algorithms.  Not required to develop software.
•    Extensive knowledge of SIEM platforms (e.g., Splunk SOAR, Splunk ES and other industry SIEM platforms) and security technologies, including IDS/IPS, endpoint protection, firewalls, and vulnerability management tools.
•    Familiarity with threat intelligence feeds, cybersecurity frameworks, and incident response methodologies.
•    Strong leadership abilities, with experience in managing technical teams and driving successful outcomes.
•    Excellent problem-solving skills, analytical mindset, and a proactive approach to addressing security challenges.
 

Desired - Bachelor's or Master's degree in Computer Science, Information Security, or a related field or equivalent experience.

Enterprise Role Overview - Responsible for providing information security expertise and strong business acumen to executive-level stakeholders. Executes decision making authority and establishes vision and direction for the organization. Partners with line of business executives, key stakeholders, vendors and/or external parties to inform security risk-based decisions. Ensures teams and partners are executing Secure by Design efforts effectively and efficiently. Typically has over 10 years of relevant experience including managing large teams, perhaps globally.

Shift:

1st shift (United States of America)

Hours Per Week: 

40