Security Monitoring Team Lead

Description

The Security Operations Team Lead is an entry level managerial leadership position. A Team Lead is expected to possess in-depth knowledge relating to one or more of the domains of responsibility of the Information Security Operations Team. A Team Lead should demonstrate a sense of ownership over those domains/programs and help to foster their continued growth over time. A Team Lead is responsible for providing fundamental program management including both day to day personnel management, roadmap implementation, and regularly monitoring and reporting tool consumption costs to management.

Responsibilities

• Oversee Information Security Operations team members that develop and execute security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company infrastructure.
• Ensure continuous monitoring of security systems, networks, and applications to detect potential security incidents and vulnerabilities.
• Lead InfoSec Operations team members to develop, implement, and maintain security monitoring processes, procedures, and documentation to enhance operational efficiency of Tyler systems.
• Provide accurate and up to date program costing information to management to enable budgetary planning and decisions.
• Guide InfoSec Operations team members to deliver program roadmap objectives and facilitate automation of security tasks.
• Oversee the testing, evaluation, and implementation of security monitoring tools, systems and services to improve threat detection capabilities.
• Work to identify, analyze and resolve enterprise security design weaknesses.
• Work with groups outside the InfoSec Operations Team to improve Enterprise security and align security monitoring activities with broader organizational objectives.
• Assist InfoSec Management with organizing vendor relationships.
• Coordinate and deliver training programs for security monitoring personnel to ensure core competencies are acquired and maintained.
• Act as mentor and manager to members of the InfoSec Operations Team.
• Handle the people aspect of InfoSec Operations team leadership.
• Oversee multiple projects with hard deadlines.
• Work collectively with management, team members, and external stakeholders to drive security initiatives forward.
• Ensure detailed documentation, diagrams or reference architecture are provided.
  

Qualifications

• Bachelor’s degree in IT, Cybersecurity or related area of study, or comparable work experience.
• At least 5+ years of progressively increasing responsibility in the areas of information security, risk assessment, Cybersecurity or Information Technology.
• Strong resource allocation skills in managing workloads and prioritizing tasks across the team.
• Strong understanding of programming, SDLC, and security automation desired.
• Experience with multiple environments and operating systems, devices and databases including Windows Server, Active Directory, VMWare, Azure or AWS is preferred.
• Strong analytical and problem-solving skills.
• Strong Incident Response background is preferred.
• Fundamental understanding of security related technologies such as SIEM and SOAR.
• Experience creating and presenting security metrics and reports.
• Must have and maintain one or more Information Security Assurance certifications such as CISSP, CISM, and/or the AWS Certified Security Specialty.
• Demonstrated commitment to ongoing professional development.
• Experience working in regulated environments such as SOC 2, PCI-DSS, and FedRAMP preferred
• Strong understanding of information security standards, concepts, controls, testing techniques and risk assessment.