The Information Security Regional Operations Manager is responsible for leading a team of information security professional within monitoring and response, incident management, and other operations-focused disciplines. This person is familiar with security alert handling, incident response best practices, endpoint and network forensics, and common threat actor tactics, techniques, and procedures; this person also has a working knowledge of networking, common security and networking appliances, vulnerability management, virtualization, and cloud architecture. Additionally, this person is also able to lead an effective response to major information security–related incidents and participates in an on-call rotation with fellow managers for major incident management.

This position reports directly to the Director of Information Security Operations and requires superior interpersonal, communication, and technical skills to work across numerous internal and external incident stakeholders and to lead effectively.

Information Security Regional Operations Manager

Your responsibilities

• Lead and mentor a team of information security professionals focused on security alert handling and incident management activities
• Arrange and maintain continuous regional coverage for assigned team duties; this includes shift-based coverage primary aligned with normal business hours per region
• Interface with Information Security Operations Program Leads to promote program development and inter-region standardization
• Ensure that processes, including incident handling, are followed per established plans and processes; can identify when deviation from plans and processes is required and helps to control associated risks
• Build relationships with internal and external stakeholders to ensure that opportunities to improve services delivery and team performance are realized.
• Producing and maintaining documentation and metrics pertaining to team processes and procedures
• Participation in the development and curation of runbooks corresponding to potential cybersecurity incidents, including integration of runbooks with external stakeholders in incident response
• Documenting and applying lessons learned through execution of operations processes to support continuous improvement
• Participation in an on-call rotation to lead major incidents pertaining to information security

Our requirements

• 7+ years of experience in information security roles
• Experience in leading technical personnel within information security disciplines
• Exceptional communications skills (oral and written) with a history of successfully engaging with multiple levels of leadership
• Experience in process development and curation, with the ability to take lessons learned from incidents and other operational issues/concerns to improve documentation
• Understanding of technology systems such as networks, applications, servers, virtualization, cloud, authentication, and emerging technologies
• Strong knowledge of cyber security threat actors, particularly their tactics, techniques, procedures, tradecraft, and noteworthy attacks
• Experience working with information security teams and functions, such as security operations centers, vulnerability assessment, vulnerability threat management, security incident management, threat intelligence, threat hunting, and cyber threat analytics; direct experience in these functions in preferred
• Familiarity with enterprise change management best practices
• Must be a self-starter, self-motivated, and able to work independently with little oversight
• Bachelor’s degree required; master’s degree preferred
• Degrees and/or certifications in computer forensics, information security, management, and similar preferred

What we offer

• Hybrid position, 2 times per week work from office in Warsaw Spire
• Benefits include: private medical care (Lux Med Vip), Multisport card, lunch card, group insurance plan, hybrid work allowance
• Position is eligible to annual bonus and company stocks for new hires