This job has expired, please see additional jobs below
Director, Security Operations
Cotiviti Holdings
Atlanta, GA, United States
Job Details - this job has expired, please see similar jobs below
Description
This role can be located either in Atlanta, GA or Wilton, CT
The Director of Security Operations role reports to the Chief Security Officer and overseas security operations for both information technology security and physical security to ensure the ongoing protection of the Cotiviti's systems, network, physical assets, facilities, and data so that they are operated under continued alignment with company security and compliance policies and business expectations. This will be achieved by managing an international team that operates security monitoring and management tools, technologies, processes, and procedures designed to protect the company's solutions and services. This role is a hands-on manager position requiring advanced technical skills with the ability to advocate and influence positive transformation within the broader information technology organization and facilities organizations.
Key Responsibilities
The Director of Security Operations ensures that all logical, technical, and physical security events are appropriately, identified, assessed and responded to appropriately through the following activities:
• Develops, implements, and maintains global security operations strategy in alignment with Cotiviti business expectations, customer commitments, and regulatory requirements.
• Develops, implements, and maintains metrics, measures, and associated reporting capabilities for Cotiviti security operations.
• Manages a global team to providing monitoring and response to security events, alerts and reports provided by Information Security and Corporate Security tools such as SIEM, DLP, IDS, physical alarms, as well as notifications to the company hotline and emergency e-mail mailbox.
• Oversee response to Cyber and Physical Security Intelligence briefings, bulletins and notifications; utilize this intelligence to search for the presence of resulting Indicators of Compromise (IOCs) within the company.
• Develops, manages, and matures the security incident response process for Information technology and physical security, in partnership with the Corporate Security Business Resiliency, Information Technology and Physical Security Incident Response functions.
• Ensures the tools and intelligence sources are providing an accurate portrait of threat and vulnerability exposure and mitigation.
• Ensures the health, integrity, completeness, and ongoing maturity of Cotiviti logging and log management infrastructure for both Information Technology and Physical Security sensors and capabilities.
• Identifies opportunities for enhanced coverage of intelligence and monitoring; recommends and implements solutions.
• Develops, implements, maintains and enhances and Cotiviti security operations management and monitoring infrastructure including methods, practices, tools, techniques, processes, procedures, and technologies.
• Executes data acquisition for security investigations and digital forensics activities
• Manages projects relating to the above, in partnership with the Corporate PMO.
Requirements
Experience Requirements
• Bachelors Degree in a field related to Information Security (or equivalent experience), preferred.
• 15+ Years of Experience in Security Operations and/or Information Security alert monitoring in at least three of the following: Digital leak prevention (DLP), Network intrusion detection (NIDS), Host based intrusion detection (HIDS), Microsoft Server and Windows, Endpoint Monitoring and Protection, Linux, Application and Database, Privileged user access management, Physical Alarms,
• Operational experience in at least three of the following vendor’s security products and services: Tripwire, Cyber Ark, Zscaler, Sourcefire, Qualys, Symantec, Varonis, Safenet, Centrify, Microsoft, Websense, and Intel Security, Lenel OnGuard
• Experience developing and maintaining application, database, network and system hardening guidelines
• 6+ Years of Experience as Manager of five or more direct staff (Experience managing a 24x7 Security Operations Center including Cyber Security preferred)
• Experience building Information Security teams preferred
• Knowledgeable and competent in security concepts, techniques, tools, methods and practices, and the the ability to successfully implement them in both business processes and technology.
• Successful track record of working with both business and technical stakeholders both independently and concurrently to achieve business goals and meet requirements
• Experience in building and implementing security operations policies, processes, standards, and procedures.
• Works with a sense of urgency while remaining calm under pressure
• Demonstrated ability to show initiative to drive progress and improvement
• Ability to work well independently and in a team environment.
• Ability to handle multiple tasks, prioritize and meet deadlines.
• Prior experience in healthcare, financial services, government or any other highly regulated sector is a plus
• Travel Requirements: < 15%
• Proficient with Microsoft Office Suite (Word, Excel, Power Point)
• Professional with ability to properly handle confidential information
• Ability to work within a matrix organization
• Excellent written and verbal communication skills.
• Must have ability to positively handle/manage stress, such as high work volume and frequent change
• Must have flexibility and willingness to participate in the work processes of an international organization, including conference calls scheduled to accommodate global time zones.
Industry Certifications (Must be able to obtain one or more within six months if not currently certified):
1.Certified Information Security Manager (CISM)
2.Certified Information Systems Security Professional (CISSP)
3.Certified in Risk and Information Security Controls (CRISC)