Senior Information Security Manager

About Avient Corporation

We are an innovator of materials solutions that help our customers succeed, while enabling a sustainable world.

Our innovation is powered by the passion, creativity, and diverse expertise of professionals worldwide.

We believe in leadership and drive our strategy and culture with six key behaviors: playing to win, acting customer centric, driving innovation and profitable growth, collaborating across Avient, and motivating and inspiring others.

The Senior Manager of Security Operations and Identity Management plays a critical role in ensuring the security and integrity of our systems and data.

The key responsibilities include:

• Ensuring SIEM and SOAR environments are "fit for purpose" and continually enhanced to cover known and emerging MITRE ATT&CK techniques
• Managing the global SOC team responsible for 24x7 alerting, triage, investigation, and Incident Response. Monitoring and improving Key Performance Indicators (KPIs)
• Tracking SOC Maturity and partnering with CISO to establish a roadmap for growing SOC capabilities and automation
• Managing the Cyber Threat Intelligence program
• Overseeing forensics, litigation support, and e-discovery capabilities in support of requests from Legal
• Leading the team responsible for identity lifecycle functions, identifying and implementing best practices to automate repetitive processes
• Overseeing IAM architecture design, deployment, and delivery of capabilities to achieve target levels of cyber maturity and efficiency, working with vendors, partners, and other 3rd parties
• Ensuring compliance with required regulations and frameworks across all divisions and markets, driving timely remediation of any IAM deficiencies

The ideal candidate will have a solid understanding of IAM principles, design, and engineering, including Single sign-on (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM).

They will also have experience implementing Zero Trust capabilities in complex operating environments, as well as experience with modern cloud detection and response tools and processes.

Bachelor's degree in information technology, engineering, business management, operations management, or related field or discipline, along with 15+ years of experience in cyber security and 3+ years in a management role, is required.

• SIEM and SOAR Enhancement: Ensure SIEM and SOAR environments are "fit for purpose" and continually enhanced to cover known and emerging MITRE ATT&CK techniques.
• SOC Team Management: Manage the global SOC team responsible for 24x7 alerting, triage, investigation, and Incident Response. Monitor and improve Key Performance Indicators (KPIs).
• Cyber Threat Intelligence: Manage the Cyber Threat Intelligence program.
• Forensics and Litigation Support: Oversee forensics, litigation support, and e-discovery capabilities in support of requests from Legal.
• Identity Lifecycle Functions: Lead the team responsible for identity lifecycle functions, identifying and implementing best practices to automate repetitive processes.
• IAM Architecture Design: Oversee IAM architecture design, deployment, and delivery of capabilities to achieve target levels of cyber maturity and efficiency, working with vendors, partners, and other 3rd parties.
• Compliance and Remediation: Ensure compliance with required regulations and frameworks across all divisions and markets, driving timely remediation of any IAM deficiencies.

Requirements:

• Strong understanding of IAM principles, design, and engineering, including Single sign-on (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM)
• Experience implementing Zero Trust capabilities in complex operating environments
• Experience with modern cloud detection and response tools and processes
• Bachelor's degree in information technology, engineering, business management, operations management, or related field or discipline
• 15+ years of experience in cyber security
• 3+ years in a management role