Manager, Cyber Security Risk Leader

If you’re passionate about innovation and love working in an environment where you can constantly improve and adopt new technologies to drive business results, then Nationwide’s Information Technology team could be the place for you! At Nationwide®, “on your side” goes beyond just words. Our customers are at the center of everything we do and we’re looking for associates who are passionate about delivering extraordinary care.

The Security Operations Center (SOC) leader role resides in the Cyber Security Operations Center. The role will be responsible for co-leading a team of incident responders that investigates security alerts generated by various security tools 24 hours a day, 7 days a week, 365 days a year. In addition, the SOC leader will be accountable for improving and automating our security operations and security engineering practices.

Previous experience managing a SOC is strongly desired. Hands-on technical experience in one or more domains, such as network security, endpoint security, or cloud and application security are desirable. Working knowledge and experience with Security Information Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), Case Management, Cloud Technologies and Endpoint Detection and Response (EDR) tools are foundational to be successful in this role.

Other Key Responsibilities:

• Lead a team of dedicated security analysts

• Manage staff, prepare work schedules and assign specific duties

• Implement departmental policies, goals, objectives, and procedures

• Drive high severity issue lifecycle: Recovery, root cause analysis, preventative measures, documentation, and closure

• Manage incident ticket queue to facilitate excellent support

• Review operations activity reports, and other performance data to measure productivity and goal achievement and to determine areas needing improvement

• Continually monitor and improve the overall performance of the team

• Serve as a teacher, coach, and mentor to analysts to achieve elite investigation quality

• Develop strong relationship and collaborate with peer teams

• Remain knowledgeable on evolving technologies relevant to the corporate enterprise

• Contribute to a positive work environment in the team/department

• Escalation point for internal and external issues

Compensation grade G5

Job Description Summary

If you’re enthusiastic about delivering secure technology solutions to support a company providing extraordinary care to its customers, then Nationwide Technology is the place for you. Nationwide's industry-leading technology workforce embraces an agile work environment and a collaborative culture to deliver outstanding solutions and results. If that sounds like something you aspire to, we want to hear from you!

As a Risk Manager, you play a crucial role in protecting Nationwide – The Protection company! You'll provide guidance to a team which supports compliance, continuity, incident management, and cyber security professionals. You'll collaborate with technology teams, software engineers, infrastructure teams and business partners. If you are ready to lead a dynamic team of cyber security professionals, we encourage you to apply and join us! 

Job Description

Key Responsibilities:   

• Enhances the risk posture of business and technology assets under your accountability. Understands the current risk posture, oversees risk assessments, and monitors issue closure. Establishes priorities to address risks effectively.

• Delivers moderate to critical risk solutions while maintaining and improving associate work-life balance.

• Manages demand and capacity to ensure the right professionals are aligned with risk efforts and projects.

• Understands the capabilities and experience of Business Information Risk Partners, Cyber Security, Compliance, and Continuity Management Professionals and aligns the appropriate person to each risk-related need.

• Fosters a continuous improvement mindset within the team.

• Provides ongoing coaching to enhance the delivery of risk products.

• Leads all aspects of associate management, including performance, salary administration, training, and development, hiring, day-to-day management and corrective actions.

May perform other responsibilities as assigned. 

 

Reporting Relationships: Reports to Director or above; Leads a team of five or more Risk Management professionals. 

 

Typical Skills and Experiences:   

 

Education: Undergraduate studies in cyber security, management information systems, engineering, math, computer science, data analytics or related field or comparable experience and education strongly preferred. Graduate studies in cyber security, computer science or a related field are a plus. 

 

License/Certification/Designation: Certifications such as CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), CISRM (Certified Information Security Risk Manager), BCP (Business Continuity Planning), DRP (Disaster Recovery Planning) are encouraged. 

 

Experience: Typically, six years of experience in a technology field including three years of leadership experience on large, complex projects. Demonstrated experience leading a team accountable for large-scale technology assets spanning plan, build and run. Demonstrable experience managing business relationships, preferably within the cyber field.  

 

Knowledge, Abilities and Skills: Ideal candidates will have the following: business acumen: understanding of business, technology, cyber, and regulatory trends; ability to encourage and challenge team members, elevate their capabilities, and foster engagement; successfully guided a staff through organizational changes; effective communication skills and familiarity with the insurance and financial services sectors. 

 

Other criteria, including leadership skills, competencies and experiences may take precedence.  

 

Staffing exceptions to the above must be approved by the hiring manager’s leader and Human Resource Business Partner. 

 

Values: Regularly and consistently demonstrates Nationwide Values. 

 

Job Conditions:   

 

Overtime Eligibility: Exempt (Not Eligible) 

 

Working Conditions: Hybrid to normal office environment.  

  

ADA: The above statements cover what are generally believed to be principal and essential functions of this job.  Specific circumstances may allow or require some people assigned to the job to perform a somewhat different combination of duties.   

Benefits

We have an array of benefits to fit your needs, including: medical/dental/vision, life insurance, short and long term disability coverage, paid time off with newly hired associates receiving a minimum of 18 days paid time off each full calendar year pro-rated quarterly based on hire date, nine paid holidays, 8 hours of Lifetime paid time off, 8 hours of Unity Day paid time off, 401(k) with company match, company-paid pension plan, business casual attire, and more. To learn more about the benefits we offer, click here.

Nationwide is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive culture where everyone feels challenged, appreciated, respected and engaged. Nationwide prohibits discrimination and harassment and affords equal employment opportunities to employees and applicants without regard to any characteristic (or classification) protected by applicable law.