• Develops, directs, and coordinates security programs, projects, best practices, and plans that advance the information security mission and strategies addressing a variety of issues, including crisis management, privacy, and physical security.
• Passionately recruit and develop individuals to join and contribute to the team who can structure and complete critical security operations projects and tasks while upholding the company’s culture and values.
• Foster innovation, creativity, collaboration, and professional growth of the team, augmented staff, and supporting vendors.
• Build and maintain positive, effective business partnerships with internal departments and external vendors and strategic relationships.
• Work closely with enterprise IT and other functional area specialists to ensure adequate security solutions are engineered to mitigate risk, meet business objectives, and regulatory requirements.
• Coordinate effective, recurring team and strategic relationship training.
• Oversee the managed security service provider (MSSP) and ensure that the security operations center is meeting the organization’s requirements.
• Support the development and implementation of security policies and procedures.
• Audit processes and systems.
• Continuously learn about new security attacks and threats.
• Document, communicate and follow-up.
• Perform security risk assessments and vulnerability assessments.
• Continuously develop security countermeasures to detect malicious activity and creates operational and compliance dashboards & reporting.
• Identify and analyze security incidents and provide recommendations for resolution.
• Stay current with emerging security threats and technologies.
• Maintain and support incident response infrastructure & cyber intelligence platforms.
• Act as a point of contact for security-related incidents and assist in incident response.
• Manage and oversee enterprise log management activities and supports security analytics platforms responsible for providing a single-paned view into security threats.
• Create and maintain reports, alerts, and dashboards with SIEM.
• Continuously enhance and provide management reporting on Key Performance Indicators.
• Configure and deploy the EDR system, including setting up policies, rules, and alerts.
• Monitor and manage EDR alerts, including triaging and investigating potential threats.
• Provide support to the organization on EDR related issues, including troubleshooting and resolving problems.
• Keep the EDR system updated with the latest threat intelligence and patches.
• Work with other security teams to ensure that the EDR system is integrated with other security tools and solutions.
• Perform other security related tasks as may be needed.

Required Qualifications:

• Minimum of 8 years of experience in cybersecurity, information security management, risk management, security architecture or engineering management, including NIST Cybersecurity Framework.
• Minimum of 5 years of strong leadership experience and success, including supervision and management of multi-faceted security operations personnel, strategic planning, program management, resource management, and budgeting.
• Ability to develop, support and motivate a 24/7/365 operation.
• Excellent communication and interpersonal skills, including the ability to present to the highest level of the organization and groups across/outside the organization.
• Able to assimilate new technologies and concepts quickly.
• Strong analytical and problem-solving skills.
• Strong time management and organizational skills.
• Good understanding of security technologies and best practices.
• Performance-driven.
• Able to handle multiple, competing projects at once through complex and rapid change.
• Proficiency in Microsoft Office Suite, particularly in Excel and PowerPoint.
• Transversal management skills.
• Solid collaboration skills.
• Ability to work well in a team environment.
• BS/BA or above degree in Computer Science, Information Systems or related field.

Preferred Qualifications:

• Experience working with a broad array of big data, security and compliance tools (such as Tenable, SentinelOne, Forescout, Splunk, Proofpoint, Pentera, Thinkst, Barracuda, BurpSuite, Sonian, Microsoft Purview, AuditBoard/Cross-Comply, Archer, Protiviti).
• Experience as a SOC Manager.
• CISSP, CISM, or similar certification.
• Knowledge of AWS and Azure cloud security services.
• Knowledge on the MITRE Att&ck framework is a plus.
• Development, testing, and/or deployment of AI/ML systems and comprehensive threat intelligence to automate highly repetitive and mundane tasks is a plus.

Supervisory Responsibility

This position has direct supervisory responsibilities.

Work Environment and Physical Demands

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.

Position Type/Expected Hours of Work

This is a full-time position with a work schedule of Monday-Friday with some schedule variations as needed.

Travel

Minimal travel is expected for this position.

EEO Statement

ACA provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ACA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.