Lead Security Engineer - SecOps

About Us:

CDK Global is a leading provider of cloud-based software to dealerships and Original Equipment Manufacturers (“OEMs”) across automotive and related industries. The Company’s cloud-based, software as a service (“SaaS”) platform enables dealerships to manage their end-to-end business operations including the acquisition, sale, financing, insuring, repair, and maintenance of vehicles. By automating and streamlining critical workflows, the integrated platform of modern solutions enables dealers to sell and service more vehicles by creating simple and convenient experiences for customers and improves their financial and operational performance.

Position Summary:

The Lead Security Operations Engineer is a technical subject matter expert responsible for the development and execution of CDK’s Security Monitoring and Response strategy. This individual plays a key technical leadership role in our Security Operations organization.  

Position Responsibilities: 

• Exemplify security principles and culture 

• Develop playbooks, standards, and procedures that enable CDK security operations strategy 

• Effectively partner across security, technology, and business teams 

• Provide technical leadership to the security operations team 

• Develop effective metrics and use them to drive meaningful improvements   

• Oversee the detection, investigation, and response to security incidents  

• Develop and manage adoption of security monitoring standards and guidelines 

• Drive continuous improvement in CDK’s detection capability using automation, threat and anomaly detection, coverage assurance, and external threat intelligence  

• Contribute to the continuous expansion of CDK’s threat detection capabilities  

• Develop, exercise, test, and continuously improve the incident response plan 

• Develop incident response playbooks and drive response playbook automation, regularly test playbook effectiveness and drive improvement 

• Lead response to medium or higher criticality impact security incidents in accordance with the incident response plan, and effectively coordinate with internal and external parties 

• Serve as a technical and an area leader for significant security incidents 

• Assure plans/procedures/playbooks coverage for likely security incident scenarios 

• Assure 24x7x365 incident response coverage and escalation processes 

• Regularly update the list of likely security incident scenarios using external threat intelligence, collaboration with internal technology teams, and other data sources 

• Use offensive security techniques and exercises to identify security gaps and drive remediation 

• Regularly practice incident response plans and procedures in collaboration with internal and external stakeholders 

• Assure that regular offensive security exercises are used to test all relevant technology platforms at CDK 

Required Qualifications: 

• Bachelor’s degree in computer science, information security, or an equivalent experience    

• Minimum of 6 years in cybersecurity, with at least 3 years in a security monitoring and incident response role. 

• Strong background in security monitoring, automation, and incident response, preferably in a complex SaaS environment. 

Salary: $140K - $180K + Bonus

CDK Global is committed to fair and equitable compensation practices. Compensation packages are based on several factors, including but not limited to skills, experience, certifications, and work location.  The total compensation package for this position may also include annual performance bonus, benefits and/or other applicable incentive compensation plans.We offer Medical, dental, and vision benefits in addition to:

• Paid Time Off (PTO)

• 401K Matching Program

• Tuition Reimbursement

At CDK, we believe inclusion and diversity are essential in inspiring meaningful connections to our people, customers and communities. We are open, curious and encourage different views, so that everyone can be their best selves and make an impact.

CDK is an Equal Opportunity Employer committed to creating an inclusive workforce where everyone is valued. Qualified applicants will receive consideration for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, creed or religion, age, disability (including pregnancy), results of genetic testing, service in the military, veteran status or any other category protected by law.

Applicants for employment in the US must be authorized to work in the US.  CDK may offer employer visa sponsorship to applicants.