Job Description:
Fidelity Investments is looking for a Director to leads its Threat Detection Content Management team in the Enterprise Cybersecurity (ECS) organization. The Threat Detection Content Management team is responsible for the development and deployment of filters and signatures to detect, prevent, and mitigate malicious attacks against Fidelity’s digital infrastructure.
The Director of Threat Detection Content Management is responsible for developing, building, and running the strategic and day-to-day operations of the Threat Detection Content Management program. This role will be responsible for maturing the current capability to evaluate threat and attack information; develop countermeasures, filters and signatures, to detect and mitigate attacks; identify tools to address current and future threats and attacks; and collaborate closely with the Incident Response and Vulnerability Detection teams to detect and block attacks. The Director Threat Detection Content Management reports to the VP of Enterprise Cyber Security Vulnerability Management.
Responsibilities
Responsible for unifying and distributing the Cybersecurity detection policies for technology across the enterprise
Analyze/reviews information on emerging cyber threats, and is actively engaged in industry forums on threats and opportunities
Lead a team of analysts to optimally tune endpoint security, host and network IPS, network access control and spam management policies and content in Fidelity
Manage and perform antivirus, host and network IPS, network access control, spam management product evaluations
Recommend and implement products/services for Enterprise Cybersecurity that support strategic operational needs and security requirements
Keeps up to date with latest hacking techniques, data analysis techniques and big data
Manage a distributed team of analysts across global sites
Facilitate the advancement of Fidelity’s Enterprise Cybersecurity program following a recognized framework and maturity
Build strong relationships with peers both internal and external to your functional group, and with peers/professional organizations outside your company
Collaborate with the various IT and business teams to manage project tasks and reach compliance goals
Operational experience responding to security incidents in a production environment, such as investigating and remediating possible endpoint malware infections and mitigating e-mail borne threats such as spam and phishing
Desired Skills and Experience
Education and Experience
An undergraduate degree in IT or related discipline, or an equivalent combination of education, certifications (CISSP, CISA, SANS GSEC, etc.) and experience
Specialist security training and certification is a plus - CISSP or SANS
8+ years of Infosec experience.
5+ years of People Management experience
Demonstrate expert skills and knowledge of cyber security threats and attacks, incident response, network and host based control technologies, and a proven track record managing cyber security teams.
Expert level knowledge of endpoint security platforms
Expert level knowledge of IPS and Network Access Control
Knowledge of the security threat landscape, especially network and web-based threats
Strong knowledge of TCP/IP
Strong knowledge of the Windows and / or Linux operating systems
Log and data analysis experience
Ability to prioritize and multi-task across numerous work streams
Highly motivated with a willingness to take ownership/responsibility for their work
Excellent written and verbal communications, with an ability to express complex concepts to both technical and non-technical staff
Ability to present to C-level executives
Excellent interpersonal, verbal and written communication, presentation, and problem solving skills
Experience managing a distributed team environment
Pass it on for Referral Bonus. Not the right role for you, but know someone we should meet? Share with him to earn $1,000 referral bonus.