Security Operations Team Lead

OP CENTER
Department
NETWORK SYSTEMS & SECURITY
Ogden
1344 West 4675 South
Position Status
40 HR
Schedule
Mon- Fri

Overview

This position will be responsible for the Security Operations team and will report directly to the Network System & Security Manager.  This individual will be responsible for identifying new vulnerabilities and responding to existing vulnerabilities within the organization. Working closely with the Network Manager, this individual will be responsible for leading and developing staff that oversee the day-to-day operations of Security Operations.  They will investigate security solutions, oversee vulnerability audits, assess risk, manage the Security Operations team to decrease and limit damages and create a culture of continuous improvement to ensure cutting-edge approaches that ensure the integrity of AFCU’s critical data assets. The Security Operations team will work directly with AFCU IT and other groups to systematically improve processes related to incident response, capabilities that protect the network, and quality of the response to any issue which presents a threat to the network.

Responsibilities

1. Responsible for Incident Response Program
a. Verify Incident Tracking procedures are being created per industry standards
b. Verify IR ticketing is working free of error and per standard procedures
c. Verify Incident Response Program is reviewed yearly and updated appropriately
d. Complete annual table-top exercises per ISSM direction


2. Responsible for Security Operations
a. Manage the day-to-day operations within the SOC functional areas as well as maintaining metrics and reports to track the success of the department:
   i. Command Center
   ii. NSM
   iii. Threat Intel
   iv. Incident Responder
   v. Forensics
   vi. Self-Assessment

 

3. Provide support for Risk Assessments generated within the organization
a. Support the ISSM with assessing new products proposed by the business
b. Generate assessments as needed on existing applications and operations


4. Responsible for identifying future trends, standards and issues that could impact existing strategies
a. Review and assess security landscape trends to determine if additions or changes are required to current programs and or applications

 

5. Assumes responsibility for establishing and maintaining effective communication, coordination, and working relations with area staff and management
a. Keeps management informed of significant problems and of progress attained in reaching established objectives. Provides recommendations for establishing new and more effective programs and future equipment needs. Suggests related procedural changes
b. Assists and supports the rest of the team as needed
c. Prepares reports of activities, records, and other required documents
d. Attends and participates in meetings and committees as required
e. Works with server, desktop, and laptop administrators to ensure their systems are fully patched and follow established security hardening procedures

 

6. Assumes responsibility for related duties as required or assigned
a. Stays informed of changes in computer technology
b. Keeps work area clean, secure, and well-maintained
c. Completes special projects as assigned
d. Assists with security assessments of credit union systems
e. Assists with the security assessment of various software purchases, external vendors and technology service providers

Qualifications

Training/Education/Certification

  • Must have five or more years’ experience in IT security
  • Bachelor’s degree in computer science, engineering or equivalent combination of education and experience preferred
  • Demonstrated project management, with the ability to think critically and decompose complex problems quickly and thoroughly
  • Must have project planning, organizing, communication, team motivating, and delegation skills
  • Must be goal orientated, action-focused, pragmatic and self-disciplined.
  • CISSP/GIAC certifications preferred

 

Required Knowledge

  • Software and application security evaluation skills using automated software evaluation tools (e.g., NESSUS and Retina)
  • Ability to research policies, procedures, standards, and guidance, and apply under specific conditions for the protection of information and information systems
  • Ability to prepare and execute detailed computer system analysis, including interim and final reports and presentation of analysis data
  • Flawless oral and written communication skills a must
  • Demonstrated strong technical knowledge of encryption & digital certificates, networking components including IDS/IPS & Firewalls, and log management, syslog analysis, and TCP/IP analysis. Advanced knowledge of system monitoring and reporting tools including SIEMs, vulnerability tools including cross-site scripting, SQL injection, cross-site request forgery, HTTP response splintering, the OWASP Top 10 and SANS Top 20 and remediation technique
  • Familiarity and experience with security industry frameworks, such as COBIT 5, ISO 27001, and NIST SP 800-30/Cyber security Framework
  • Technical knowledge and extensive implementation experience with security and networking architecture, networking protocols, network security design, wireless security, intrusion prevention/detection, and firewall architecture
  • Assist in the troubleshooting and resolution of complex cyber security issues
  • Provide independent, sophisticated analysis of potential malware and exploits
  • Provide threat intelligence, research, and reporting on incident response and relevant cyber security threats
  • Experienced in compliance and reporting on NCUA, PCI, GLBA, FISM, FFIEC or other compliance frameworks to management and auditors 
  • Experience with SIEMs and or Event Management tool

 

Experience Required

  • 2+ years of relevant security and network experience required
  • 3+ years of experience managing technical teams
  • 3+ years of experience in a SOC environment
  • Should possess in-depth knowledge and understanding of concepts, protocols, best practices and principles as a means of relating IT risk, IT audit, and compliance requirements to meet the needs of the business

 

Skills/Abilities

  • Strong analytical and problem solving skills
  • Well organized, with good verbal and written communications skills
  • Ability to prioritize and plan projects effectively
  • Ability to assist others and share knowledge with other team members
  • Able to use PC, terminal keyboards, and various computer hardware

Apply

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed