-
ID
#52755981 -
Salary
TBD -
Source
SitusAMC -
Date
2024-10-24 -
Deadline
2024-12-22
Manager Security Operations and Engineering
Pennsylvania, Harrisburg, 17101 Harrisburg USASitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve.At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team!This position will have superviosy responsiblity and manage direct reports. Reporting directly to the Global CISO, the SVP, Security Operations and Engineering will lead all security operations and engineering efforts across SitusAMC. This role will be responsible for developing and executing the overall security operations strategy, managing security engineering projects, and overseeing day-to-day security operations focused on monitoring, detecting, analyzing, and responding to cybersecurity threats. This role will evaluate and improve existing security measures, lead and mentor a global team of security engineers and analysts who hunt, detect, and respond to internal and external threats. This role will foster collaboration with IT, product, and development teams to ensure security best practices are seamlessly integrated into all aspects of the organization will be paramount. This role will perform as a Subject Matter Expert in security incident investigations and post-incident analysis to identify root causes and implement measures to prevent future occurrences. This role requires a strategic thinker with strong leadership skills, excellent problem-solving abilities, and a deep understanding of security protocols and procedures.Essential Job Functions:
Responsible for maintaining SitusAMC’s security posture by implementing, managing, and monitoring security measures and controls.
Oversee the daily operations and management of SAMC’s SOC, building and leading a global team focused on monitoring, preventing, detecting, analyzing, and responding to cybersecurity threats.
Provide cybersecurity leadership and management to the SOC team, including security analysts, incident responders, threat intelligence analysts, security engineers, and other IT security professionals.
Implement and manage security incident response procedures and playbooks, including investigation, containment, and resolution of security incidents.
Oversee the design, implementation, maintenance, and day-to-day management of security systems, including EDR solutions, Security Information and Event Management (SIEM) systems, vulnerability management systems, and email security systems.
Responsible for proactively managing relationship with Managed Security Services Provider (MSSP)
Manage daily SOC operations, including incident ticketing, workflow management, and metrics reporting, leveraging SIEM systems or other security automation tools to streamline processes and enhance efficiency.
Define operational metrics, key performance indicators, and service level objectives to assure the team achieves operational excellence across Security Operations, engineering, and Incident Management and Response.
Support the GRC and audit teams as they conduct regular risk assessments and implement mitigation strategies to minimize security risks.
Lead incident response efforts, conducting thorough remediation and root cause analysis.
Develop and maintain security incident response plans, including coordination with internal stakeholders and external partners, including law enforcement.
This position supervises others
Other activities as may be assigned by your manager
Qualifications/ Requirements:
Bachelor's degree in the field of computer security, information technology, computer science or related field; or equivalent combination of education and experience
Minimum of 12+ years of industry and/or relevant experience, typically with 2+ years in a VP level role or external equivalent.
Minimum 8 years of progressive work experience in Security Operations, Incident Response and Investigations, including 4+ years of proven hands-on technical management and leadership experience of security engineers and analysts.
Relevant certifications such as CISSP, CEH, GIAC, ISSAP, CISM or other relevant security-focused certifications preferred
Extensive experience in designing and implementing security infrastructure, including firewalls, IDS/IPS, SIEM, EDR/XDR, CSPM, firewalls, etc.
Familiarity with cloud security principles and technologies (e.g., AWS, Azure, GCP).
Strong team management skills, leading and motivating a team that is geographically dispersed which includes contractors and offshore resources.
Highly motivated self-starter that can manage multiple deliverables independently in a fast-paced environment
Strong written and verbal communication, presentation, and interpersonal skills to effectively exercise tact, discretion, judgment and diplomacy when interacting with internal and external customers and senior management. Ability to present technical issues in a non-technical manner to audiences with varying degrees of technical expertise
Ability to work effectively in a diverse and global work group and to achieve results through global team efforts
Broad knowledge across the security, insider threat, risk management and compliance domains.
Familiar with security controls or concepts related to various security community groups or standards: CISSP Domains, NIST cybersecurity & privacy frameworks, CIS benchmarks, and OSI model.
#LI-AS1 #LI-REMOTENote: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume.The annual full time base salary range for this role is$148,000.00 - $225,000.00Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans.Pay Transparency Nondiscrimination Provision (https://go.situsamc.com/rs/962-QMP-613/images/pay-transp%20EnglishformattedESQA508c.pdf?version=0)SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.Know Your Rights, Workplace Discrimination is Illegal (https://www.eeoc.gov/sites/default/files/2023-06/22-088EEOCKnowYourRights6.12ScreenRdr.pdf)SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume.