Vice President, Information Cyber Security

Essential Function / major duties and responsibilities of the job
Strategic

•    As part of the IT Security team, develop and implement CLS IT Strategy in consultation with the CLS IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall CLS Strategy
•    Provide security advice and support for information technology projects
•    Research new security related products and services to ensure that CLS is equipped with appropriate industry best tools and solutions

Operational

•    Operate and maintain controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc with an emphasis on cloud deployments and implementations. 
•    Conduct IT Security risk assessments for all high impact projects, defining security mitigating controls that impact the technology architectures of CLS, service providers, and business partners
•    Review and update IT Security procedures to reflect best practice and mitigate current and emerging threats
•    Assigned ownership of IT Security Monitoring and Response related FRB and Internal Audit finding(s) and effective /timely resolution with IT Security
•    Maintain relationships with third-party IT security vendors and strategic partners
.

Leadership
    Individual contributor whilst also being a team enabler
    Execute IT Security Monitoring and Response team’s vision and mission in alignment with the overall IT Security vision and mission, as well as with CLS’s strategic direction
    Through example and behavior, strive to provide peer leadership to other team members with the goal of being excellent service providers and enablers to other constituencies (both internal and external)
    Actively mentor other team members both technically and professionally
Experience / essential and desired for successful job performance

•    4-6 years ‘hands-on’ IT Security analysis and engineering experience including securing systems, networks and infrastructure; operational support, including on-call experience
•    3+ years’ experience including combination of intrusion detection, malware analysis, forensics and/or incident response, particularly in cloud environments. 
•    Working knowledge of cloud environments such as AWS. 
•    Monitor, tune and develop technical IT Security controls and frameworks to ensure appropriate preparation, monitoring and response to threats
•    Ensure a risk-based approach to IT Security is adopted in every part of the business and solutions
•    Work with members of the IT Security team to help design, implement and maintain security
•    Prepare for, identify (hunt) and remediate cyber threats
•    Operate and maintain IT Security controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, etc.
•    Deliver IT Security projects from concept, approval, design, and implementation to operation
•    Ability to collaborate effectively with others to drive forward key security objectives 
•    Strong documentation and report writing skills (to both technical and business audiences)
•    Excellent time management and organizational skills combined with technical IT Security acumen
•    Expert knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, & Endpoint Protection software
•    Financial and/or Banking industry experience preferred
 

Qualifications / certifications

•    Virtualized and Cloud platforms experience such as Amazon Web Services, Microsoft Azure or Office 365
•    B.S. in a technology discipline (Computer Science, Computer Engineering, Cybersecurity or equivalent); Security certifications such as CISSP and at least one GIAC GSEC, GCED, GCIA, GCIH, GREM or equivalent is preferred 
•    Knowledge of incident handling life cycle based on an established framework: ISO 27035, SANS, NIST SP 800-61, CERT, ENISA
•    Experience with security and automation: Python, Powershell, Windows OS, Linux OS, VMware, Puppet, Chef / Ansible

Success factors / ‘How’. Personal characteristics contributing to an individual’s ability to excel in the position

•    Possess a strong service-oriented mind set to consistently deliver balanced security solutions that include people, process and technology
•    Possess strong technical, analytical and problem solving skills
•    Self-motivated to exceed management expectations and objectives.
•    Ability to effectively communicate complex technical issues to both business and technical staff at all levels.
•    Strong collaboration skills to tackle complex security challenges that may span across multiple internal and external departments and groups
•    Able to effectively cope with change and comfortably handle risk and ambiguity, not upset when things are up in the air
•    Tenacious resolve and positive attitude in challenging situations