Head of Information Security Operations

As part of the application process, a candidate account is required to log in and view application(s).  Please be sure to check email regularly for information regarding our employment process.

Position Summary:

The Head of Information Security Operations is a strategic leadership position tasked with the critical responsibility of safeguarding the organization's information assets. This role encompasses a broad spectrum of duties that include establishing and maintaining cybersecurity technical platforms and capabilities implementations to secure technology operations that are aligned with business objectives and regulatory requirements.

The individual in this role will be instrumental in identifying, evaluating, implementing, and managing information security-related technical capabilities, thereby ensuring the integrity, confidentiality, and availability of information. They will lead the security collaboration with other technology and business stakeholders, ensuring that the organization's cybersecurity posture is robust and resilient against known and emerging threats.

As a key advisor to senior management, the Head of Information Security Operations will provide both tactical and strategic support for technical and non-technical aspects of the program, including deployed or aspirational capabilities. They will maintain and communicate insights and recommendations on cybersecurity trends and best practices and support various stakeholders in ensuring cybersecurity requirements are applied throughout the organization.

This role requires a visionary leader with a deep understanding of cybersecurity principles and strong technical proficiency across a variety of security and non-security capabilities. The ideal candidate will possess strong communication and leadership skills, the ability to navigate complex business and regulatory landscapes, and a commitment to continuous improvement in the face of a rapidly evolving cybersecurity environment.

Profile Responsibilities:

• Provide strategic direction and leadership to the cybersecurity operations team, fostering a culture of innovation, collaboration, and continuous improvement.

• Lead and coordinate security operations center and incident response activities, ensuring timely resolution and mitigation of cybersecurity threats and incidents.

• Manage threat intelligence programs and lead efforts to proactively identify and mitigate emerging cyber threats.

• Implement and oversee vulnerability assessment and management programs to identify and remediate security vulnerabilities and configuration weaknesses in a timely manner.

• Manage tactical and strategic operations, maintenance, and engineering of security capabilities, tools, and systems, including Identity and Access Management solutions like directories and PAM, Security Incident and Event Management (SIEM), firewalls, endpoint protection, email security, vulnerability management, and various other information security and related controls

• Stay current with and ensure compliance with relevant regulatory requirements, trends, and industry standards and manage cybersecurity risks effectively. Participate in internal and external audits and assessments to demonstrate adherence to these standards.

• Recruit, mentor, and develop cybersecurity operations team members, fostering their professional growth and technical expertise.

• Work closely and form partnerships with other technology teams, business units, and senior management to align cybersecurity initiatives and requirements with business objectives.

• Develop, maintain, and continuously evolve a comprehensive cybersecurity capabilities portfolio for Resolution Life US

• Plan, execute, and oversee projects, ensuring they are completed on time and within budget

• Define, develop, and implement security policies, standards, and procedures and provide periodic Information Security reports

• Training, coaching, and mentoring more junior or new staff unfamiliar with the area or processes to not only understand what they are doing but also why they are doing it.

• Perform additional tasks and take additional responsibility as directed by the CISO.

• Embrace and operate in an agile working environment.

Knowledge & Skills:

• B.A./B.S. in CyberSecurity, Computer Science or IT-related field, or equivalent experience

• Professional Certification is preferred: CISSP, CISM, or equivalent

• 12+ years of related IT/IT Security technical and process experience, including previous lead/manager positions in a production operations environment.

• Comprehensive proficiency in core security principles and domains: Asset Security, Security Architecture, Risk Management, Communications and Network Security, Identity and Access Management, Assessment testing, and Software Development methodologies.

• Demonstrated deep technical proficiency in common security capabilities and tools such as Identity and Access Management, Security Incident and Event Management (SIEM), firewalls, endpoint protection, email security, vulnerability management, and various other information security and related controls

• Proficiency with AWS technologies is preferred

• Strong record of success in achieving business objectives, growth, and efficiencies

• Demonstrated strong problem-solving and analytical skills is critical

• Strong leadership skills with the ability to work with and influence people at all levels across the enterprise

• Great attention to detail with the ability to understand impacts on the broader organization

• Effective time management and prioritization

• Ability to work within tight time constraints and multiple priorities

• Excellent verbal and written communication skills

• Excellent interpersonal skills, teamwork, and collaboration

Location: West Chester, PA preferred (generally 1-2 days/week in the office, may be more); open to remote in Atlanta, GA or Minneapolis, MN for the right candidate with the expectation to travel as needed.

Resolution Life US is committed to disclosing a reasonable estimate of the base salary for our job roles. These estimates consider a wide range of factors in making base salary decisions, including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

In addition to salary, Resolution Life US offers a comprehensive benefits package, including our health & wellness program, incentive and recognition programs, and 401k contribution (all benefits are subject to eligibility requirements). The salary range reflects figures based on the primary location, which is listed first. The range for the role may differ based on the location.

West Chester, PA base salary range: $152,000 - $185,000

Atlanta, GA and Minneapolis, MN base salary range: $146,000 - $180,000

Critical Skills
At Resolution Life, we have identified the following critical skills which are key to success in our culture: 

• Customer Focused: Passionate drive to delight our customers and offer unique solutions that deliver on their expectations.
• Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution.
• Team Mentality: Partnering effectively to drive our culture and execute on our common goals. 
• Business Acumen: Appreciation and understanding of the financial services industry in order to make sound business decisions. 
• Learning Agility: Openness to new ways of thinking and acquiring new skills to retain a competitive advantage.