Supervisor of Security Operations

col-narrow-left
Job ID:
2499378
Location:
Lake Forest, IL
Category:
Information Technology, Telecommunications, Array
Salary:
$145,000.00 per year
Zip Code:
60045
Employment Type:
Full time
Posted:
08.10.2018
col-narrow-right
col-wide

Job Description:

Supervisor of Security Operations
$125-145K +bonus

*Located in Lake Forest initially and then moving to downtown Chicago*

This position will supervise the Security Operations Center (SOC) team and manage the relationship with an external security provider. This combined team is responsible for 24/7 full time monitoring and protection of Grainger data and is responsible for operational security-related tasks/change execution.

Principal Duties & Responsibilities:

This section contains list of 5-8 primary responsibilities that account for 10% or more of their time. The incumbent will perform other duties as assigned.

  • Supervise and participate in day-to-day information security operations, including monitoring, analysis, detection and escalation of security risks and threats to Grainger systems and business

o Coordinate information security incident response team, as well as serve as the Grainger point-of-contact for information security operational requests

§ Provide overall direction during execution of the incident response process, providing advanced analysis and direction, facilitating appropriate escalations and serving as the conduit for event communications to management.

§ Direct completion of post mortem analysis, document findings and provide recommendations to proper security and infrastructure teams for appropriate corrective actions.

§ Provide coordination of operational tasks from requests to execution ( including providing hands/feet support for external vendor)

o Oversee the vendor who provides Managed Security Services

§ Ensure security monitoring and incident response systems (SIEM) are maintained in a state of readiness

§ Manage and monitor Enterprise Endpoint protection (AV/Malware, Client Firewall, Internet and DMZ Firewall, Intrusion Detection etc.)

§ Manage Vulnerability scanning and reporting

  • Provide operational metrics
  • Build strong working relationships with other IT teams (Client Platform Support, Mobile, Server, Network, Software Delivery) to work on security tasks
  • Champions continuous improvement within SOC, identifying automation opportunities and tools that could improve the ability of the team to detect and react to events
  • Build and update Security Operations SOPs

Preferred Education & Experience:

To perform the job successfully, an individual must be able to perform the Principal Duties and Responsibilities satisfactorily.

In this section, list the background minimal requirements, skills and abilities one needs to perform the job.

  • BA/BS or equivalent preferred.
  • 5-7 years of experience in related field preferred.
  • Strong analytical and problem solving skills with the ability to synthesize big picture and detailed technical issues rapidly and accurately. Ability to multi-task, effectively prioritizing and executing tasks in a high-pressure environment.
  • Ability to communicate situation reports to both highly technical and non-technical individuals so that each has a clear understanding of the situation, the impact and next steps.
  • CISSP (or CISM), ITIL, GCIH/GIAC certifications recommended
  • Has lead a security team of 3 or more individuals for at least 3 years
  • Demonstrated ability to motivate, mentor, coach and lead technical teams
  • Strong continuous improvement problem-solving and mentoring skills
  • Strong verbal and written communication, facilitation, and interpersonal skills

Work Environment:

This section contains the physical environment in which the work is performed.

  • Work Conditions are typical of an office environment.
  • Office job, requires ability to life
  • Significant remote travel is not expected at this time. However, for training or in other special circumstances travel may be required.

Impact:

This section contains the level and types of decisions and the impact of the job on the organization.

  • This position is responsible for overseeing the delivery of all Operational Security Services to ensure confidentiality of Grainger's data, integrity of its systems and data and availability of information assets for the business.
  • As Grainger continues to grow, this position becomes critical to Grainger's ability to avoid or minimize the impact to the 24/7/365 operations by rapidly identifying, reacting mitigating adverse network and systems security events.
  • Responsible for all Security Operations Center resources and vendor service management
  • Responsible for setting and managing security Service Level Agreements (SLA) for Grainger
  • Key stakeholder in the process of providing critical information necessary for compliance with Global regulatory Information Security, Internal Audit, financial regulatory (Sarbanes-Oxley Section 404), PCI requirements are met and maintained.

Working Relationships:

This section contains information on working relationship of the jobs. Include job titles only.

Internal

  • Reports to Manager for Security Engineering and Operations
  • Works primarily with global IT technical and managerial teams, all security teams, and the Physical Security operations team.

External

  • Manages relationship with Managed Security Service Provider (MSSP)
  • Interfaces with 3rd party resources to coordinate on global attacks and incidents.
Company Info
Request Technology - Anthony Honquest