Tuesday, July 21, 2015
Director - Security Operations - The Coca-Cola Company - Atlanta
Job description
Position Overview
The Director of Cyber Security Operations Center (C-SOC) is a strategic leadership position reporting directly to the Chief Information Security Officer of The Coca-Cola Company (TCCC). This role is responsible for enhancing and leading the security operations within the Company. Leading a global multidisciplinary security team managing service level agreements of the managed security service (MSSP) provider, security incident response and escalations occurring within and across the Company’s varying technologies and communication systems,
threat and vulnerability management, and information security architects. Scope is in the assurance that information security is fully integrated into appropriate Cyber Security processes and services to The Coca-Cola Company, its bottlers, contingent workforce, suppliers and external business partners.
Qualified candidates will be have a demonstrated track record of building capable global cyber security operations organizations using appropriate models that optimize the delivery of services.
Responsibilities
Work with IRM, business partners from IT Operations and Engineering, Strategic Security, Corporate Audit, Bottlers Investment Group (BIG), and other relevant internal partners to understand and deliver on business and technical requirements, especially as they pertain to Incident management and response, threat and vulnerability analysis and remediation, security operations center, and integrated information security architecture.
Serve as an all-source intelligence function as part of a team responsible for producing authoritative intelligence assessments that define cyber threats in partnership with the Information Assurance team.
Think critically regarding threat actors, cyber threat landscapes, potential cyber-attacks and cyber-attack surfaces, and produce high-quality information, presentations, recommendations, and findings that describe the all-source cyber threat intelligence picture to the CISO and Company management.
Ability to qualitatively and quantitatively evaluate information security risks and correlate with the CIA (confidentiality, integrity, availability) risk methodology.
Experience in working with large, complex projects to ensure technical refresh and up to date security technologies remain in place.
Experience in logging and monitoring, incident response, threat and vulnerability, information security architect, and operational responsibilities
Knowledge of a wide variety of security technologies such as firewalls, IDS/IPS, web proxies, token authentication, web application firewalls, identity controls, health monitoring technologies, file integrity monitoring, data analytics, encryption protocols, packet captures, cloud services, and monitoring.
Effectively managing global team with remote employees.
Create global strategic networking within the Company for effective security operations.
Maintain an engaged and accountable team that prioritizes available, securely configured and scalable security tools and technologies over time.
Use appropriate and effective measures to respond to incident alerts.
Support the maintenance and deployment of new security solutions in multiple data centers including solutions to monitor and manage cloud services.
Manage vendor escalation issues and maintaining vendor relationships for effective security operations and incident management.
Ensure designs for security operations requirements are implemented.
Develop and maintain operating guidelines and procedures in support of TCCC Cyber Security Operation’s Center policies, standards, procedures, and guidelines.
Support incident management processes for timely detection and response to security monitoring alerts.
Work with peer IT groups to understand technical and functional requirements for integrating security operations requirements and solutions into IT infrastructure and operational support services as well as within defined architectural patterns
Benchmark and adopt best practices best suited to TCCC.
Provide measurably effective 24x7x365 security operational support services to TCCS. This will require occasional off-hours support to address service impairments, analyzing and responding to incidents or scheduled deployments and definition of key metrics.
Build an organization that is capable of achieving its defined mission, including team building, talent development, succession management, and application of appropriate sourcing models.
Perform capital expense and operating expense financial management for the C-SOC program through disciplined management routines.
QUALIFICATIONS:
15+ years of experience with a large global or multinational company and/or a consulting organization known for its knowledge and experience in developing world-class security operations, incident managements, threat and vulnerability management, and information security architect.
At least 8 years of experience in incident management and response in global companies.
10+ years of experience delivering complex projects, including the management of budgets, resources, timelines and stakeholders.
8+ years of experience managing an organization and developing people.
8+ years of experience providing IT Security infrastructure services in an operational capacity.
Demonstrated experience working with various security technologies such as analytics (Splunk), vulnerability scanning (e.g. Qualys), IDS/IPS, data leakage prevention (DLP), web proxy, firewalls, logging and monitoring platforms, cloud monitoring; antivirus/malware detection and prevention, encryption and other relevant technologies, applications, and solutions.
Proven experience in enterprise security operations, cloud computing, enterprise mobility, and delivering innovative solutions.
Ability to work effectively and efficiently both individually and in a team environment operating in a fast, complex environment that is constantly changing.
Comfortable and adept in dealing with ambiguity.
Proven ability to communicate effectively, clearly and concisely; able to tailor communications to the size and nature of the audience.
Ability to identify, document and gain senior management and peer support for security operations programs.
Presentation, communication and influence skills that are effective at the C-level in large organizations
Refer This Job To Your Friends And Help Them To Find Jobs!