Senior Manager, Information Security Operations – Remote
Full Time
Calabasas, CA 91302
Posted
Job description
The Senior Information Security Operations Manager will lead all aspects of security operations within the company. This includes but is not limited to oversight of patching, vulnerability management and remediation, configuration management, threat management, security controls monitoring, activity monitoring and incident response.
Duties and Responsabilities
Duties and Responsabilities
- Responsible for managing the relationships with third party vendors who provide security services such as monitoring, incident response, and security testing.
- Develop and provide performance metrics and related reports.
- Lead internal investigations of security violations, respond to all information security relevant events and ensure that Service Level Agreements and Standard Operating Procedures are defined, tracked and met.
- Develop and maintain internal documentation.
- Monitor company assets, network and data for attempted efforts to compromise security protocols and ensure prevention of events that negatively impact confidentiality, availability and integrity.
- Responsible for the continuous development and oversight of the security operations program, interface with other IT and business units, and effective communications to both the Information Security staff, management and executive levels.
- Responsible for investigating novel and complex threats, developing knowledge, playbooks, and automation.
- Troubleshoot complex problems with little oversight, take ownership and work with the Cybersecurity team as needed to resolve customer issues.
- Review, build and improve security operations processes based on industry standards and guidelines to perform Threat Analysis, Forensics Analysis, Data Loss Prevention, Vulnerability Management, Patch Management, Penetration Testing, Security Monitoring and Incident Response
- Create reports, dashboards, and metrics for security operations and present to Management
- Develop new use cases and playbooks/SOPs, as well as automation for recurring incidents and incident tasks
- Improve processes and procedures to reduce false position alerts
- Contribute towards the Security architectural review, design and implementation of security controls
- Regularly perform tuning and filtering alerts and monitor components to ensure only relevant security data is gathered
- Monitor and analyze vulnerabilities across company assets to detect potential threats
- Ensure compliance to customer Service Level Agreements (SLA) and security monitoring and incident response processes
- Act as a liaison between operations analysts and customer stakeholders during incident handling and communicate incidents at an appropriate level of details with all levels of the organization
- Responsible for detection, containment, mitigation and protection activities to safeguard against real time threats
- Review and recommend best practices to enhance product and application security
Scope
- Staff supervision and development — No
- Decision making-
- Drafts policy and resolves problems
- Provide data for decision support
- Provide consultation or expert advice
- Participate in planning business objectives
- Travel – <5%
- Location— Remote Anywhere
Requirements
Education
- Degree in Information Security, Information Systems, Computer Science or equivalent education preferred
- Preferable certifications such as CISSP, CISM, CISA
Skills (Required)
The anticipated salary range for this position is $132,700 – $199,100 depending on location, knowledge, skills, education and experience. This position is also eligible for an annual discretionary bonus. In addition, we offer comprehensive and competitive benefits to Associates (and their families) such as medical, dental, vision, life insurance, short-term and long-term disability. Eligible Associates are able to enroll in our company’s 401k plan. Associates will accrue paid time off up to 136 hours per year, including 16 hours of Floating Holidays and paid sick time up to 80 hours per year unless otherwise required by law. The Company observes 12.5 paid holidays.
- Strong understanding and knowledge of security standards/frameworks such as NIST, ISO 27001, SSAE 18, PCI, HIPAA, CIS, COBIT, OWASP etc.
- Strong hands-on experience with security in public cloud platforms (AWS, Azure, GCP), Networking, Operating Systems, Software Development, IAM, Key Management, Encryption, SIEM, DLP and Endpoint Security
- Excellent collaboration and interpersonal skills. Must be able to communicate with all levels including influencing executive leadership
- Strong oral, written, reporting and presentation skills. Lives and breathes in documentation
- Willing to work off-hours (nights/weekends) depending on incidents
- Excellent collaboration and interpersonal skills
- Must be able to communicate with all levels including influencing executive leadership
- 5+ years of relevant experience in information security with demonstrated experience building and managing a Security Operations Center (SOC)
The anticipated salary range for this position is $132,700 – $199,100 depending on location, knowledge, skills, education and experience. This position is also eligible for an annual discretionary bonus. In addition, we offer comprehensive and competitive benefits to Associates (and their families) such as medical, dental, vision, life insurance, short-term and long-term disability. Eligible Associates are able to enroll in our company’s 401k plan. Associates will accrue paid time off up to 136 hours per year, including 16 hours of Floating Holidays and paid sick time up to 80 hours per year unless otherwise required by law. The Company observes 12.5 paid holidays.
About Harbor Freight Tools
We're a 45 year-old, $6.5 billion national tool retailer with the energy, enthusiasm, and growth potential of a start-up. We have over 1,300 stores in 48 states across the country and are opening several new locations every week. We offer our customers more than 7,000 tools and accessories, from hand tools and generators to air and power tools, from shop equipment to automotive tools. We provide our customers with the right tool for the right job at the right price, always delivering quality and value.
offroadmanagementgroup.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, offroadmanagementgroup.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, offroadmanagementgroup.com is the ideal place to find your next job.