This position is responsible for the technical areas of the International Security department of Admiral Europe, composed of the Security Operations Center (SOC) and the Security Architecture and Engineering (SecArch) teams, based in Spain. The SOC consists of a variety of highly-skilled, technical staff performing Monitoring and Analysis, Cyber Incident Handling, Threat Intelligence & Hunting, non-compliance reporting, user activity monitoring, and vulnerability assessments of on-prem and cloud environments. The SecArch Team is in charge of the execution of the technical security projects and is key in supporting the DevSecOps and the architectural review of any business product development. This position is directly accountable for the effective and efficient management of the team and will report directly to the European CISO.
Functions and Responsibilities:
1. Define, drive and manage the technical Security Strategy of the company, in synergy with the CISO and the InfoSec Governance manager;
2. Plan, direct, and manage day-to-day activities across the two teams, Security Operations Center and Security Architecture and Engineering;
3. Drive implementation and improvement of new tools, capabilities, frameworks, and methodologies across the InfoSec Team;
4. Accountable for the timeliness and efficiency of identification, isolation, mitigation, and reporting of critical incidents by the SOC;
5. Instill and reinforce industry best practices in the domains of DevSecOps, Security Architecture, incident response, cybersecurity analysis, knowledge management, and SOC operations;
6. Familiarity with AWS Cloud concepts and experience in hardening, monitoring and responding to threats in Cloud environments;
7. Promote and drive implementation of automation and process efficiencies;
8. Be the Security Architectural point of reference for the organization;
9. Promote Security by Design and DevSecOps practice and tooling implementation;
10. Maintain situational awareness of escalated events and alerts, tools status, vulnerability status, forensics and malware investigations, intelligence status, and all other SOC functions;
11. Experience reporting on SOC activities to operational and C-Level stakeholders;
12. Direct the functions, processes, and operations of the SOC and ensure policies and procedures are followed;
13. Responsible for the 24×7 operations of the SOC to ensure optimal identification/resolution of security incidents and enhance client security;
14. Providing CISO/Senior Management with a realistic overview of risks and threats in the enterprise environment;
15. Improve and maintain a Security incident response management program that includes incident detection, analysis, containment, eradication, recovery and chain of evidence/forensic artefacts required for additional investigations;
16. Ability to work directly with businesses to ensure not only resolution management but also internal customer satisfaction;
17. Conduct scheduled and ad hoc training exercises to ensure the SOC Team members are current with the latest threats and incident response techniques;
18. Provide direction, leadership and management of the Security Technical teams.
#J-18808-Ljbffr