Senior Manager, Security Incident Response Team

Company: Stratice, LLC
Location: Bentonville
Posted on: June 24, 2022

Job Description:

Site Name: USA - Arkansas - BentonvillePosted Date: May 26 2022Are you seeking an opportunity to work for a world class Incident Response organization dedicated to monitoring threats within a global pharma company?This Senior Manager, Security Incident Response Team will be a critical function responsible for helping manage, mature and execute on the company's incident response (IR) playbook. This role will be part of a fast-paced operational area within the Cyber Security department. The leader in this role will work to handle the ever-changing threat landscape while also using current resources, ongoing development of their workforce and input in strategic planning to ensure the company has the appropriate tools to deal with cyber incidents across the corporate portfolio. This role will manage traditional IR capabilities, while building industry leading and forward-looking teams. Teams will be responsible for application of threat intelligence and information as well as hunt team abilities related to machine learning, artificial intelligence and related analytical capabilities. The role will execute on incident management plans while offering recommendations for process refinement across the technology footprint of the organization. This role must also help ensure the confidentiality and data integrity within the organizations network and extended boundaries.

• Coordinate CSIR team's incident response and forensics tasks in order to make sure an incident is correctly prioritized and the incident response subtasks execute appropriate playbooks and meet agreed SLA
• Candidate should be familiar with incident response processes, network investigative techniques, network intrusion patterns, malware analysis, and cyber security trends and issues
• The manager will serve as an escalation point for high/critical network security incidents and should be able to perform functions such as log analysis, network traffic and endpoint forensics, be able to draw together data from disparate sources, and have experience coordinating large scale incident response that would include tech and not tech related business stakeholders
• Work with internal and trusted external intelligence related to indicators of compromise (IOC's) to be converted to actionable information which can be used to strengthen the corporate security posture
• Lead across functional areas of technology to ensure access and visibility to data sources and other action items which can be used to strengthen defense and detection capabilities within GSK networks
• Attract, retain and grow technical and leadership capabilities of engineers within their span of control while also exhibiting leadership presence elsewhere in the business
• Oversee day to day operations and personnel management which my also include third party incident response and/or threat hunting resources
• Provide appropriate escalation of information which enables visibility and decision-making process to various Tech departments along with Information Security and Risk leadership team
• Manage and provide timely recommendations for development, modifications, and operation of network/endpoint security infrastructure and detection tools
• Develop, improve, and execute on business plans which improve security posture and align to help meet the needs of business partnersWhy you?Basic Qualifications:We are looking for professionals with these required skills to achieve our goals:
  • Bachelor Degree or equivalent work experience
  • 5 years' experience in physical and/or digital information and/or incident handling
  • 3 years' experience creating and presenting technical strategies and technical solution recommendations.
  • 3 years' experience leading cross-functional teams.Preferred Qualifications:If you have the following characteristics, it would be a plus:
    • Masters degree or further advanced qualification from professional IT security body (i.e. ISACA CISM or CISSP) in Information Technology, Information Security, Information Assurance, Information Management
    • Deep understanding of organizational and architectural challenges in Public Cyber company including board and senior management briefings, used to form strategy and process
    • Vendor relationships and experience working in NDA and future tech solutions to allow for strategy development of deployable infrastructure from TechOPs and Cloud perspectives
    • Solid background and experience around network engineering, systems administration, scripting, correlation, analytics, multiple operating systems exposure to at least the administrator level (Windows, Linux, UNIX)

Keywords: Stratice, LLC, Springdale , Senior Manager, Security Incident Response Team, Hospitality & Tourism , Bentonville, Arkansas