Find jobs in Alaska today!

To post a job, login or create an account |  Post a Job

  Jobs in Alaska  

Bringing the best, highest paying job offers near you

previous arrow
next arrow

Director of Security Operations

RED SKY Consulting

This is a Contract position in Anchorage, AK posted September 25, 2020.

Director of Security Operations Position Type: Direct Hire Location: Anchorage, AK Candidate referral program-get 2500.

moneiy for referring others to RED SKY Consulting details below, at end of job description.

Director of Security Operations This is a leadership role which directs the work of several team members including managers and/or senior managers within a specialized area (i.e., engineering, information technology, business operations); has profit and loss responsibility for the department and is accountable; works with directors, senior directors and/or vice presidents of given department in developing departmental short and long-range objectives, plans, budget and policies.

Sets the tone for continuing training requirements of key individuals to ensure that the team is prepared to take full advantage of advances in the technologies used by the company to improve and add new services for our customers.Manage and oversee the Security Operations Center (SOC) and the teams responsible for the real-time protection of the Enterprise.

Inspire the teams to deliver high levels of performance and quality results while maintaining morale.

Act as a positive mentor and coach, with both technical and soft skills.

Perform timely management duties, such as annual performance reviews, hiring, and promotions.

Responsible for communicating clear expectations and prioritization to, and measuring and reporting upon those expectations to management.

Leadership (Departmental and staff related activities): Requires the ability to perform highly complex and diverse duties under deadlines and operating constraints.

Capable of delivering large, highly complex projects, often involving the coordination of activities of other business units in the company.

Requires ability to develop, recommend, and execute plans and programs with greater organizational impact.

Must have knowledge and technical expertise in the area of responsibility and company policies/procedures.

Position is expected to provide functional leadership, oversight and guidance to staff and groups assigned, while fostering teamwork within area of responsibility.

Responsible for hiring, leading, developing and managing the performance by those reporting to this position, establishes and communicates clear performance expectations, and makes recommendations for salary increasesContinuously improve and advance the organizations operation security capabilities, focusing on process and procedures.

Security Operations (prevention & identification): Oversee the organization’s security operations.

Research, develop, and implement security plans and policies associated with the organization’s communications and other business systems.

Provide leadership to Security Operations Center; ensuring effective operational procedures are in place along with all tasks, activities and controls necessary to run a 24×7 SOC.

Responsible for the clear communication of the current threat and vulnerability landscape.

Lead the development of operational security controls, procedures and tools to defend people and assets against current and emerging security threats/risks.

Lead the development and implementation of security configurations and standards.

Management of escalations and exception requests.

Establish reporting and information sharing relationships with external organizations for the purpose of tracking threat intelligence and security incidents within the region and the industry.

Provide regular and consistent reporting as to the status of security operations.

Security Program Management : Actively participate in the ESO management team.

Support other ESO directors and managers to advance their department’s programs and achieve their goals.

Contribute to the overall maturity of the information security program.

Security Program Administration (preparation & prevention): Lead the continuous development of operational security policies, procedures & standards.

Manage and support risk based assessments of systems, networks, applications and vendors based upon contractual requirements, security policies, best practices and industry standards/regulations; reporting findings and assisting in remediation of vulnerabilities.

Project and Resource Management: Working with the department’s Program/Project Management Office, ensure the successful implementation of complex new security systems, controls and processes.

Collaborate with internal and external resources in order to achieve successful outcomes.

Finalize documentation and support materials for assigned technology systems and infrastructure.

Participate with defining, monitoring and reporting upon control compliance and effectiveness.

Incident Response (detection, eradication, containment & recovery): Provides calm and clear leadership during major security incidents.

Develop and ensure the (24×7) ability of the SOC to rapidly respond to, contain and eradicate security incidents.

Continuous improve and refine the security incident management process.

Oversee fraud and forensic investigations Oversee and manage security violations and incidents.

Oversee post-event reviews of security incidents and present root cause analysis and recommendations.

Vendor, Contract and Budget Management: Responsible for departmental and project budgets and ensuring efficient use of resources.

Manages vendor relationships to ensure quality services.

Manages ESO contracts and procurement of security solutions in collaboration with procurement and legal.

Knowledge, Skills, Abilities: Leadership and Management: Proven ability to lead an organization to high levels of performance while maintaining morale and personal growth for employees in a union free environment.

Ability to act as a positive mentor and coach to subordinates and instill a coaching environment in the organization.

Proven ability to implement and executive against strategic vision.

While technically competent, able to maintain focus on Leadership and Management responsibilities.

Ability to develop detailed capital and operating budgets for the department.

Familiar with reporting and tracking tools necessary to assure budget guidelines meet expectations.

Demonstrated ability to analyze complex challenging problems and situations leading to optimal solutions.

Ability to develop the organization necessary to meet the group mission and to interface with other units within the company.

Excellent verbal and written communication required.

Must be able to articulate information in presentation format in front of internal and external customers.

Technical Competencies: Ability to work independently, manage projects, and exercise judgement in reaching solutions.

In-Depth understanding and working knowledge of information security data and processes.

Ability to work and coordinate with multi-team environment including program managers, business analyst, IT analyst and other security professionals.

Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.

Demonstrated experience with networks, information classifications, and confidentiality requirements associate with high security environments.

Knowledgeable of technological trends and developments in the area of information security and risk management.

Knowledge of firewalls, anti-virus, intrusion detection/intrusion prevention systems, virtual private networks, remote access systems, network zoning, centralized monitoring, and application scanning.

Knowledge of information security and risk control frameworks, business continuity, and IT disaster recovery frameworks.

Knowledge and experience of operation methodologies, such as ITIL.

Experience in creation, design, development and implementation of dashboards.

Minimum qualifications: Minimum of twelve (12) years of professional (relevant) experience in; Information Security, Cyber Security, Physical Security, Information Technology infrastructure, application development, support & operations, systems administration, access control, cryptography, technology architecture, critical analysis, disaster recovery, investigations, compliance, or technical legal areas (such as those involved in law enforcement, prosecution, defense, or forensics).

To include: Minimum of ten (10) years’ experience in Information / cyber security; Minimum of five (5) years of managerial experience with proven experience building and leading strong teams.

Minimum of four (4) years’ involving production operations; e.g.

incident, change, service management.

High School diploma or equivalent is required.

Bachelor Degree in computer science, technology, security or in relevant field required.

In addition to minimum experience required, degree may be substituted on a year for year basis with relevant exempt work experience on a year for year basis.

Masters Degree is desired.

Certifications: Industry specific certifications are highly valued and can contribute toward education.

Three (3) of the following certifications are highly desired CISA: Certified Information Security Auditor CRISC: Certified in Risk and Information Systems Control CISSP: Certified Information Systems Security Professional CISM: Certified Information Systems Manager GSLC: GIAC Security Leadership CSX Certificate, CSX Practitioner, or CSX Specialist Other applicable IT, Information Security and Compliance related Certifications Driving Requirements (if applicable): Must possess and maintain a valid driver’s license, proof of insurance and a satisfactory driving record.