Director, Cyber Security in Parsippany-Troy Hills, NJ at Securitas Security Services USA

Date Posted: 2/15/2021

Job Snapshot

Job Description

JOB SUMMARY:
The Director of Cyber Security is responsible for the setup and operations of the Securitas Global CERT (Computer Emergency Response Team). The scope of the CERT is to identify, across the entire IT estate of the Securitas Group, any operational security issues and to raise associated tickets for the responsible IT functions to address these issues. These operational security issues will be detected via security monitoring processes, vulnerability detection and threat hunting. The global CERT will lead all incident responses and the ultimate scope of the organization will be reached through incremental expansion of capabilities in the Securitas Global Cyber Resilience Program.

The Director of Cyber Security will lead the organization in the area of operational IT Security, working closely together with both IT Functions and the Securitas Digital Security Office and operating as the Service Manager for global digital security services such as EDR, VM and cloud-based web proxy services.

ESSENTIAL FUNCTIONS:
• The functions listed describe the business purpose of this job or position. Specific duties or tasks may vary and be documented separately. An associate might or might not be required to perform all functions listed. Additional duties may be assigned, and functions may be modified, according to business necessity.
• All assigned duties or tasks are deemed to be part of the essential functions, unless such duties or tasks are unrelated to the functions listed, in which case they are deemed to be other (non-essential) functions.
• Associates are held accountable for successful job performance. Job performance standards may be documented separately, and may include functions, objectives, duties or tasks not specifically listed herein.
• In performing functions, duties or tasks, associates are required to know and follow safe work practices, and to be aware of company policies and procedures related to job safety, including safety rules and regulations. Associates are required to notify superiors upon becoming aware of unsafe working conditions.
• All functions, duties or tasks are to be carried out in an honest, ethical and professional manner, and to be performed in conformance with applicable company policies and procedures. In the event of uncertainty or lack of knowledge of company policies and procedures, associates are required to request clarification or explanations from superiors or authorized company representatives.
• Build, grow, develop, and oversee the Securitas global CERT team, inclusive external providers to increase the value, sophistication and application of internal operational security services.
• Enhance the functionality and proficiency of Securitas security operations practice which include the following:
• Lead the Cyber Security Incident response practice responsible for eventual 24x7x365 monitoring of all security events and management of all security threats, incident response and cyber threat intelligence.
• Operating intrusion detection and prevention (IDS/IPS) capabilities and managing Incident Response capabilities across the Enterprise
• End-to-end ownership of vulnerability scanning and associated remediation plans and processes
• Architecting, engineering, and operating Cyber Security tools to support business operations of all systems globally, in close collaboration with the Digital Security Office

MINIMUM QUALIFICATIONS AT ENTRY
Additional qualifications may be specified and receive preference, depending upon the nature of the position.
• 10+ years of experience in information security, including on a Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
• 5+ years of experience in another IT function, especially IT Audit 

EDUCATION/EXPERIENCE:
• BS or MA in Computer Science, Information Security, or a related field
• Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM)

COMPETENCIES: (as demonstrated through experience, training, and/or testing):
• Deep knowledge of operational security frameworks and standards.
• A strong process acumen is necessary as well as a strong background of hands-on technical experience, deep technical knowledge and understanding of information security and associated solutions and tools such as data loss prevention, database security, endpoint and network security tools, and best practices.
• Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations
• Strong decision-making and communication capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• An ability to effectively influence others to modify their opinions, plans, or behaviors
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• An understanding of organizational mission, values, and goals and consistent application of this knowledge
• Strong knowledge of CERT operating models; ability to lead CERT process definition and implementation
• Technical expertise in Cyber Threats, IOCs, etc.
• Deep knowledge of security frameworks and standards such as Mitre’s ATT&CK framework, the CIS standards, SOAR, etc.
• Good knowledge of current practice CERT tooling and market offerings.

Working Conditions and Physical/Mental Demands:
With or without reasonable accommodation, requires the physical and mental capacity to perform effectively all essential functions. In addition to other demands, the demands of the job include:
• Maintaining composure in dealing with executives, clients, prospects, and staff, in group settings and in situations requiring high performance and results.
• Must undergo and meet company standards for background and reference checks, controlled substance testing, and behavioral selection survey.
• Handling and being exposed to sensitive and confidential information.
• Required ability to handle multiple tasks concurrently.
• Occasional local and regional/national travel for presentations, meetings, and visits.

EOE M/F/Vets/Disabilities