Principal of Security Operations

Business Wire, a Berkshire Hathaway company, is the global market leader in press release distribution and regulatory disclosure. We are on a mission to redefine how organizations connect with their audiences - and that’s just the beginning!
Organizations, large and small, depend on us to accurately publicize market-moving news and multimedia, and generate social engagements that develop interactions with their target audiences.
About the RoleBusiness Wire is committed to delivering secure and reliable software solutions to our internal stakeholders and external customers. We are looking for a talented Principal of Security Operations to join our team and drive our Security Operation, Detection & Response initiatives to new heights. As the Principal of Security Operations, you will be a key leader responsible for overseeing and advancing our security operations function. You will play a critical role in safeguarding our systems, data, and reputation by implementing and optimizing various security technologies and processes.  You will enhance the security resilience of Business Wire, working closely with various teams to proactively protect our valuable assets and uphold our commitment to providing secure and reliable services to our clients.

What You'll Do

• Security Operations Leadership: Provide mentorship, direction, and guidance to enhance our security capabilities associated with monitoring, detection, and response.
• Detection & Response Platform Management: Oversee the management and optimization of our Security Information and Event Management (SIEM) platform to ensure timely detection and response to security incidents.
• Security Automation: Build security automation playbooks leveraging the SOAR platform to improve the detection & response capabilities of the team.
• Endpoint Protection: Implement and manage Endpoint Detection and Response (EDR) solutions to protect our endpoints from advanced threats and intrusions.
• Monitoring and Analysis: Establish and maintain a robust monitoring and analysis program to identify and respond to security events in real-time.
• Threat Intelligence: Operationalize the threat intelligence program by collaborating on the ingestion and correlation of threat intelligence feeds with the Business Wire threat defense tools.
• Investigation and Forensics: Conduct thorough investigations into security incidents, analyzing root causes, performing host and network forensics, and providing remediation recommendations.
• Threat Hunting: Proactively search for and identify potential security threats and vulnerabilities, staying ahead of emerging attack vectors.
• Incident Management: Lead incident response efforts, coordinating with internal and external stakeholders to effectively contain and mitigate security incidents.
• Cloud Detection & Response: Lead and manage security incidents and response procedures within AWS environments, utilizing native AWS security tools effectively.
• Defensive Tools Management: Oversee and optimize security defensive technologies, including DLP, CASB, Crowdstrike EDR, Microsoft Defender, Wiz, and others to mitigate potential threats.
• AWS Security Best Practices: Implement and maintain security controls in AWS environments, adhering to industry best practices and ensuring compliance with security standards.

What You'll Need

• Extensive Security Operations Experience: 8+ years of hands-on and leadership experience in security operations, incident management, and threat hunting, with 4+ years in an AWS environment.
• Strong Technical Background: Deep understanding of security technologies and tools including SIEM, EDR, threat intelligence platforms, and other security monitoring and detection solutions.
• Scripting Experience: Demonstrated knowledge of common scripting languages (Python, PowerShell, Bash, etc.).
• Cloud Security Expertise: Proven experience in managing security investigations and implementing security best practices within AWS environments.
• Incident Response Expertise: Demonstrated expertise in leading and managing incident response efforts, with a strong understanding of incident handling best practices. Extensive experience in handling and leading complex incident response activities across a dynamic technical ecosystem.
• Preventive Capabilities Expertise: Demonstrated knowledge of preventive security technologies such as DLP, CASB, Crowdstrike XDR, Microsoft Defender, and their integration into security operations.
• Leadership and Collaboration: Proven leadership skills with the ability to inspire and motivate a team, collaborate with cross-functional stakeholders, and drive positive change.
• Communication: Exceptional communication skills to effectively collaborate with cross-functional teams, present security findings to executives, and articulate complex technical concepts to non-technical stakeholders.
• Analytical and Problem-Solving Skills: Strong analytical mindset and problem-solving abilities to assess complex security incidents and develop effective solutions.
• Strategic Thinking: Ability to develop and execute long-term security operations strategies, aligning security goals with business objectives.
• Threat Intelligence: Familiarity with threat intelligence sources and experience in applying threat intelligence to enhance security operations.
• Continuous Improvement: A mindset focused on continuous improvement, staying up-to-date with the latest security trends and proactively adopting new security technologies and practices.
• Ability to adapt to dynamic security challenges and work in a fast-paced environment.
• Certifications such as CISSP, CISM, GIAC, or AWS security certifications are a plus.
Business Wire will not sponsor a new applicant for employment authorization for this position.
What We OfferThe base salary range for this position is $160K to $235K/year.  Offered salary will be determined by several factors, including but not limited to: applicant’s education, experience, knowledge, skills and abilities, as well as internal equity and alignment with geographic market data.  Business Wire reserves the right to modify this salary range at any time.
Business Wire’s total rewards include:
• Ability to work remotely
• Excellent health benefits that begin on your first day of employment
• $100 monthly fitness allotment, a tuition reimbursement program, and enhanced mental health resources
• 401(k) plan with generous company match, and annual profit sharing contribution (subject to company performance)
• PTO, Floating Holidays, Wellness Day Off, Birthday Day Off, and more!

A pre-employment background check will be required after the acceptance of an offer. Business Wire is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Pursuant to the San Francisco Fair Chance Ordinance and other similar state laws and local ordinances, and its internal policy, Business Wire will also consider for employment qualified applicants with arrest and conviction records.