Director of Security Operations will serve as a central point of contact for information Security Operations event management. The candidate is expected to be a seasoned security professional and a team player with a strong drive for results and continual improvement. This role will report directly to SAP Ariba’s Chief Security Officer.
Watch: Career Advice
Oversee and direct the effectiveness of security operations, event and incident management, vulnerability scanning and remediation activities.
Conduct operation event analysis reporting on activities through regularly scheduled reporting and communications. Escalate critical security events and manage the incident response process of driving these incidents to resolution.
Proactively identify security risks and issues and then works across the company to address in a timely manner
Management and reporting of key information security performance indicators and continuous improvement planning.
Provides timely feedback to other IT Security teams, such as Engineering, Architecture, Risk and Compliance
Collaborate with the Governance, Risk, and Compliance department to develop and update Security Operations standards, procedures, guidelines, and best practices.
Ability to build and maintain constructive working relationships with a diverse community of technical and non-technical audiences. Ability to effectively communicate with and influence these audiences as well.
Strong written, verbal, and inter-personal communication skills.
Job Requirements
In order to be successful, the ideal candidate must be, without a doubt, passionate about our customers, partners and technology. Success will depend upon building rapport and credibility with multiple stakeholders across SAP Ariba. As a leader in Cyber Security, this candidate will have opportunities to mentor, support, and contribute to goals and initiatives that ensure the secure usage of technology, industry standards, and best practices.
10+ years experience in Security and Risk Management
Experience working with log management, security monitoring and security incident/event management tools such as: Splunk, Tripwire, Qualys etc.
In depth knowledge of common security technologies such as Vulnerability scanning, NIDS, AV, Email security, Forensics, etc
Experience in a leadership position within a Security Operations team
Ability to execute Incident Response stages of Preparation, Identification, Containment, Eradication, Recovery and Lessons Learned
Ability to develop and track key performance indicators (KPIs) and metrics for operational success
Proven leadership skills including: effective oral and written communication, performance management, issue resolution, negotiation, motivating others, forecasting and planning
Experience in a security role with strong working knowledge and understanding of information security frameworks, incident management, operations and application security best practices
Advanced knowledge of key information risk management and security related standards including OWASP, ISO 2700x series, PCI-DSS, GLBA, EU Data Security and Privacy Acts, FFIEC guidelines, and NIST standards.
The ideal candidate will have the following qualities:
Bachelor’s Degree or equivalent desired.
Industry certifications including relevant SANs, CISSP, CRISC, and/or CISA
Successful track record of working with both business and technical customers to achieve business goals and meet requirements
Knowledgeable in Cloud Security, Application and Web Application Security and the concepts, techniques, tools, methods and practices used to secure them
Strong communication skills and ability to influence others
Excellent planning ability and business acumen
Able to see the “big picture” and contribute to development of operations runbook
Must be organized and goal/execution oriented
Education
Bachelors Degree or Equivalent
Send To A Friend
Posts
