Manager, InfoSec Operations & Incident Response

We’re always looking for diverse, talented, service-oriented people to join our exceptional team.

Manager, InfoSec Operations & Incident Response

The pay range for this position is listed below. Our pay ranges are built to allow for candidates with various levels of skill and experience to be considered, as well as for room for growth and tenure achieved in a role over time. Typical new hire salary offers fall within the minimum to midpoint of a pay range for many candidates. Any offer extended to a candidate will be based upon their unique set of knowledge, skills, education, and experience as well as internal equity.

Pay Range:

$150,994.00 - $249,140.00

Scheduled Weekly Hours:

40

What You’ll Be DoingResponsible for the Information Security Operations and major Incident Response functions. Oversees programs that improve Information Security operations and Incident Response, protecting corporate IT assets and data -- on-premise/in-cloud/at-vendor. Lead a group of professionals empowered to actively engage IS teams, business process owners, and vendor partners to quickly respond to systems and services incidents, ensuring data privacy and highly available services to our Members. Ensure an Incident Manager is available to handle all major incidents during business hours and extended business hours; maintain IT Incident Management program.

• Develop information security strategies in alignment with policies, regulations and governance initiatives.
• Oversee continued development and maturity of the following programs: Threat Intelligence, Forensics, Vulnerability Management, Security Awareness and Training, Endpoint Security, Network Security, Email Security, Anti-Bots, and Incident Response.
• Oversee development and execution of a comprehensive information security operations program and introduce/mature processes, policies, and technology.
• Partner with business leaders to educate and influence decisions to support the overall Information Security Program.
• Develop standards for SOPs, Runbooks and Incident Response plans.
• Responsible for detecting events, deciding the appropriate actions for events, and ensuring proactive communication to the appropriate teams, leadership and Emergency Response teams.
• Responsible for detecting and investigating any change of state that has significance for the management of a Continuous Integration or IT services.
• Lead major incident calls; bringing technical teams, business units, and vendors together to quickly resolve an outage.
• Responsible for maintaining unified systems, applications and business/IT processes monitoring and alerting to maximize uptime.
• Responsible for developing and maintaining Availability Dashboards; ensures historical and real-time end-to-end visibility into critical IT services and applications.
• Responsible for monitoring and correlating multiple events and apply advanced analytics to quickly detect potential security breach attempts and protect financial privacy. Leverage real-time monitoring, incident response and insider threat detection.
• Responsible for proactively communicating incident status to respective stakeholders throughout incident lifecycle.
• Responsible for systems failure impact analysis and Service Outage Analysis (SOA) initiatives.
• Ensures team interfaces with all levels of technical and non-technical individuals in user departments to propose solutions and enhancements to improve processes that failed or have resulted in error prone delivery or extended outages that have impacted member services.
• Manage Vendors, Managed Service Providers (MSP), Managed Security Service Providers (MSSP), and contracts.
• Manage vendor engagements and oversee the execution of statements of work.
• Support creation of KPI’s, KRI’s and provide metrics that illustrate the efficacy of the Information Security Operations and Incident Response team.

Additional Job Functions

 

• Provides daily support to staff, including answering questions and problem resolution, communicating job expectations; planning, monitoring, and appraising job results; training, coaching, counseling, and disciplining employees; developing, coordinating, and enforcing systems, policies, procedures, and productivity standards.
• Accomplishes financial objectives by forecasting requirements; preparing an annual budget; scheduling expenditures and analyzing variances.
• Contributes to organizational goals and priorities as a member of Management team. Establishes and implements plans that have short-term (1-2 year) impact on business results in alignment with organization objectives.
• Evaluates operating procedures and policies, ensuring the highest levels of Member service, productivity and internal control.
• Initiates, researches, coordinates and implements department or division projects intended to benefit Members, internal teammembers or department operations.
• Ensures compliance with state and federal laws as well as any other applicable regulations.
• Understands the credit union organizational goals and key performance indicators and takes the necessary actions to achieve desired results.

 

• Performs other duties as assigned
• Complies with regulatory compliance and assigned training requirements including but not limited to BSA regulations corresponding to their specific job duties. Failure to do so may result in disciplinary and other employment related actions

Qualifications

• Bachelor's Degree in Information Systems or relevant field of work required

• 10+ years of experience in a technology leadership role
• 10+ years years of experience managing large complex projects
• 7-10 years of process development, support and implementation of systems architecture
• 7-10 years of experience with Solution Architecture and Integration Design
• Experience with Cyber Kill Chain Framework

• At least one of the following certifications (required):
• CISSP (Certified Information Systems Security Professional)
• CISA (Certified Information Systems Auditor)
• SANS/GIAC (Management, Security, or IR & Forensics)
• Two or more of the following certifications (preferred):
• OSCE (Offensive Security Certified Expert)
• CISM (Certified Information Security Management)
• CIAM (Certified Identity and Access Manager)
• CGEIT (Certified in the Governance of Enterprise IT)
• Splunk Enterprise/Splunk Cloud Security Certified Admin
• ITIL Master
• CompTIA Security+

SchoolsFirst FCU is committed to Diverse, Equitable, and Inclusive Hiring

At SchoolsFirst FCU we are dedicated to building and growing a diverse, inclusive, and authentic Dream Team, so if you’re excited about a position or wanting to make a career change but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. Many skills are transferrable and you may be just the right candidate for the position, or for other roles we are working on.

SchoolsFirst Federal Credit Union is committed to fostering, cultivating, and preserving a culture of diversity and inclusion. SchoolsFirst FCU is an equal opportunity employer and prohibits discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on their race, color, religion, sex, national origin, age, sexual orientation, gender identity or expression, political affiliation, or genetic information.

This organization participates in E-Verify.