Cybersecurity Lead (3885)

Responsibilities:

• Monitors networks for security events and alerts to potential/active threats, intrusions, and/or indicators of compromise through advanced analysis and threat hunting
• Handles escalated malicious incidents that requires deep investigation and response planning
• Investigate and validate phishing email reports, email filter quarantines and other incidents as assigned
• Perform advanced threat hunting techniques for threats that cannot be identified using existing automated security tools
• Investigate and analyze internal and external adversaries and indicators of compromise
• Partner with service providers to assess needs, implement products and services, and optimize and maintain high delivery standards
• Interface with managers to train on security goals and mitigations relative to their priorities 
• Lead, manage, and monitor security tools, including firewalls, intrusion detection/prevention systems, SIEM solutions, and endpoint security platforms.
• Owns the process around security reviews of third-party vendors and contractors to ensure compliance with security requirements and industry best practices.
• Partner with Legal, coordinate e-discovery data collection activities as well as complete data destruction requests
• Evaluate and provide suggestions to improve existing programs, practices, and technologies to align with the company’s risk appetite and ensure regulatory compliance
• Apply concepts and processes from industry security frameworks, such as CIS 20 Security Controls, NIST CSF, ISO 27001, GDPR and CCPA and PCI DSS
• Audit technology user compliance towards Firm acceptable use standards

Basic Qualifications:

• 10+ years of Cybersecurity, Information Technology, IT network or other related IT experience
• Experience with SEM or other cybersecurity tools and services is required
• Experience with Microsoft Azure, Microsoft 365 and Azure Information Protection or other cloud tools
• Experience with cyber security operations, including daily monitoring and response to alerts and issues
• Experience with tools used in penetration testing, security event analysis, incident response, computer forensics, malware analysis or other areas of security operations
• Experience in drafting security policies and guidelines or security programs

Preferred Qualifications:

• Bachelor’s degree in information technology, cybersecurity, or engineering