Director Information Security Operations

Director Information Security Operations

This leader will ensure the organization is in compliance with information security standards, policies and procedures, and communicate and implement industry best practices and solutions employed in the information security operations and cyber security domains. This role will be responsible for developing trust-based relationships with business units to fully understand and deliver solutions to meet their business needs, while using diplomacy and relationships to advance the information security risk management program within a consensus-driven culture. The ideal candidate will have proven success developing, implementing, and continually refining technical security standards and procedures.

Responsibilities & Duties

  • Provide direction and leadership to various information security functions including but not limited to: SOC, MSSP, Log correlation/aggregation, SIEM management, Threat Intel, vulnerability management, and threat hunting.
  • Daily ad-hoc security related issues
  • Provide governance for Security Incident Management and remediation support.
  • Provide continuous assessment for policy changes and develop recommended actions for implementation.
  • Sponsor and facilitate security initiatives that significantly improve our ability to monitor, audit, and comply with our security policy.
  • Manage teams to deliver comprehensive information risk management solutions, establishing workload balancing and prioritizing tasks and projects based on expert assessment of risks and threats.
  • Authorize projects, approves project designs and cost estimates. Reports projects status and critical issues to senior management.
  • Set objectives and priorities and ensure the effective allocation and use of department resources.
  • Work to develop employees skills, evaluates performance, provides feedback, and leads by example, making the workplace of choice for top information risk management professionals.
  • Engage with senior representatives from across the enterprise, vendors, and auditors to provide full-spectrum alignment on information protection program, and our obligations to our customers, associates, and shareholders.
  • Establish, communicate, and administer short and long-term strategies in coordination with all other IT and business senior management.
  • Define, track, tune, and report on KPIs relevant to security operations program.
  • Effectively budget and forecast capital, labor, and non-labor budgets.
  • Represent Information Security in cross-functional meetings and projects.
  • Prepare for, implement, and communicate new security initiatives and processes within assigned team.
  • Required to perform duties outside of normal work hours based on business needs.
  • Assumes responsibility for other duties as required or assigned.

Skills and Experience

  • Ability to establish and maintain effective working relationships at the senior management level across functional groups and business units.
  • Successful track record of managing departments and multiple groups of technical team members with varied disciplines.
  • Ability to communicate function vision and establish aligned direction and goals for his/her department.
  • Ability to obtain and effectively allocate resources
  • Experience recruiting, retaining, and developing talent and holding employees accountable for results.
  • Ability to communicate vision and establish direction and goals for his/her department.
  • Possesses strong problem solving, collaboration, critical thinking, team building, and presentation skills.
  • Strong ethics in the context of business and information security.

Job Qualifications/Requirements

  • Minimum Education Level: Bachelors degree in computer science, information assurance, MIS or related field
  • Minimum Job Experience: 10+ years
  • Computer/software skills: Advanced
  • Required: 10+ years of experience in technology and information risk management, of which 5+ years are in leadership capacity.
  • Preferred: CISSP, CISM and/or SANS certification

Bank of Hope is an equal employment opportunity employer and does not discriminate on the basis of race, color, gender, religion, age, sexual orientation, genetic information, national or ethnic origin, disability, marital status, veteran status or any other basis protected by federal, state, or local law.

Associated topics: cybersecurity, forensic, identity access management, idm, information security, information technology security, leak, security, security analyst, threat

Related Post