Senior Security Operations Specialist

Job Description

We are seeking a seasoned security professional to join our team in a key role. The successful candidate will be responsible for ensuring the security and compliance of our systems and processes.

The ideal candidate will have a strong background in security operations, including incident response, vulnerability management, and risk assessment. They will also have excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams.

Key Responsibilities

• \
• Provide guidance on security best practices and ensure compliance with relevant regulations and standards.\
• Develop and maintain security operations processes and documentation.\
• Monitor and respond to security incidents and vulnerabilities.\
• Collaborate with IT teams to ensure the secure deployment of new technologies and systems.\
• Conduct regular security audits and risk assessments.\
• Develop and implement security awareness programs for employees.\
• Stay up-to-date with emerging security threats and trends.\
• Assist in the development and implementation of security policies and procedures.\
• Participate in incident response activities and provide technical expertise as needed.\
• Continuously improve security practices and processes to minimize risks.\
• Develop and implement metrics and dashboards to track security performance.\
• Identify areas for improvement and recommend changes to enhance security posture.\
• Support business growth by ensuring that security needs are aligned with business objectives.\
• Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business.\
• Stay current with industry trends and emerging threats.\
• Communicate security-related information to stakeholders as needed.\
• Develop and maintain relationships with security vendors and partners.\
• Manage budgets and resources related to security initiatives.\
• Collaborate with legal and compliance teams to ensure security is aligned with regulatory requirements.\
• Provide input on technology investments and recommendations.\
• Maintain accurate records of security incidents and vulnerabilities.\
• Ensure compliance with data protection regulations.\
• Work closely with the leadership team to develop and implement strategic plans.\
• Develop and present training programs for employees.\
• Conduct post-incident reviews and identify areas for improvement.\
• Collaborate with IT teams to ensure secure configuration of systems and networks.\
• Assist in the development of disaster recovery and business continuity plans.\
• Support efforts to protect against cyber threats and data breaches.\
• Work with cross-functional teams to develop and implement policies and procedures.\
• Provide technical guidance to junior security professionals.\
• Staying informed about cybersecurity threats and evolving them.\
• Supporting organizational change management and adopting cloud-based technologies.\
• Helping to foster a culture of innovation and continuous learning.\
• Collaborating with various security products and platforms.\
• Providing support for SIEM, DLP, endpoint protection, and other security tool alerts.\
• Managing CEII compliance.\
• Developing and implementing metrics and dashboards to track security incidents, vulnerabilities, risks, and awareness.\
• Performing continuous monitoring of controls including tracking and monitoring ISO and SOC 2, SOC 1 and overall common control framework.\
• Monitoring and reporting on vulnerability and hardening compliance scans.\
• Driving remediation within prescribed timeframes.\
• Inventory management and reporting.\
• Processing deviation request tracking and reviews.\
• Plan of Action & Milestones (POA&M) updates and submissions.\
• System Security Status reporting.\
• Monthly Continuous-Monitoring Metrics reporting.\
• Compliance review of Significant change requests.\
• Staying up-to-date with changing threat landscapes and continually adapting security practices to mitigate these risks.\
• Ensuring alignment between security and business goals and objectives.\
• Addressing security concerns from employees or customers.\
• Communicating with stakeholders on matters of security.\
• Coordinating security-related projects and tasks.\
• Enhancing employee understanding of security best practices.\
• Recommending budget and resource allocation for security initiatives.\
• Working collaboratively with cross-functional teams.\
• Reviewing and improving security-related policies and procedures.\
• Engaging in planning and preparedness for potential security incidents.\
• Developing an operational plan for data protection.\
• Implementing the Risk Management, Vendor Management, and governance of Information Security policies across the company.\
• Designing and building metrics and dashboards to track security incidents, vulnerabilities, risks, and awareness.\
• Tracking, reporting, and reviewing on SOX Compliance.\
• Discovering errors and executing mitigation of Cybersecurity Risks.\
• Following established corporate guidelines and consistently adhering to protocols when handling sensitive information.\
• Preparing tactical solutions to resolve security issues promptly.\
• Maintaining seamless collaboration with other departments through reliable communication and working efficiently together.\
• Creating process improvements while continuing education in current security environments.\
• Fostering strong professional connections with key individuals who can provide critical support during times of need.\
• Executing collaborative planning to produce a defensive system which allows our organization to respond quickly to and minimize the impact of cyberattacks.\
• Working to educate employees regarding the importance of maintaining confidentiality, integrity, and availability of their personal and confidential information.\
• Education and promoting beneficial business behaviors.\
• Consistent use of ICSBQF Organizational Change Maturity Model based methodologies throughout each phase.\
• Continuous personal learning and integration of new techniques.\
• Supervising day-to-day operation, reflecting it towards quality assurance targets.\
• Retaining active Employee Diplomacy as required situation demands.\
• Ongoing cooperation with multiple impacted Group Services.\
• Delivering LCM methodology feasibility assessments internally.\
• >Developing useful insight on existing HC IT-Secural domains.\
• >Overview of efforts toward normalizing Team Effectiveness Adoption Patterns.\
• >Organization Capability Development Support.\
• >Research Employees Readiness for New Future-Based Industry Specific Challenges and Reinforce corresponding aspects under 'Effectivity Inserions'.\
• >Redesign HR Software Trainings heavily focusing Depper Interteligency Influence Pathways - Full Participation —- Board Lead Process-centric Cross-safe Journey Follow-up Reviews.[/list]\