Job Description
About Eleven Recruiting
We are a specialized technology staffing agency supporting professional and financial services companies. Why do we stand out in technology staffing? We listen and act as advisors for our candidates on how they can best add value, find interesting projects, and pave a path for career advancement. We advocate for the best pay, diversity in tech, and the best job fit for every candidate we place.
And our client, an excellent investment firm, is seeking a Manager of IT Cyber Security to join their team!
Responsibilities:
- Management of staff. Leads, influences and mentors a team of engineering and analysts
- Manages 24/7 SOC team and resources. Manages on-call schedule and incident escalations
- Proactive monitoring and reporting for endpoint and system health including, patching, compliance, and other performance metrics. Coordinates vulnerability remediation
- Endpoint Detection & Response (EDR/XDR), automation (SOAR), anomaly detection and SIEM tools. SIEM/Log Correlation & Alerting, Insider Threat Detection, CSPM, Threat Intelligence / Partnerships with Industry Orgs (FS-ISAC), SOC Operations, DevSecOps (CI/CD), Penetration Testing (Red/Blue Team)
- Secure DevOps, SDLC & Development Standards, Secure Coding, Application Vulnerability Analysis, Change Control / Integrity Monitoring, Web Application Firewalls, API Security, Third Party / Open-Source Supply Chain Security
- Network security technologies including Firewalls, Application Security (SAST/DAST/SCA), Intrusion Detection, Identity Management, Data Classification/Protection, Anti Malware/NGAV, Web Proxy, Endpoint Management/Patching, DDoS Protection, Encryption/PKI, proxy
- DLP, WAF, messaging security products. IR and Forensics tools
- Identity and Access Management; SSO/Federation (SAML, OAuth, OpenID Connect), LDAP/Active Directory/SCIM, Multi Factor Authentication, RBAC Principles, IaaS/PaaS/SaaS Identity Integration, Privileged Access Management, Device Posturing / Certificate Based-Authentication
- Implements new security technologies, Incident response plan maintenance and testing through tabletop exercises.Diagnoses and investigates problems. Supports the incident response process
- Provides effective security guidance to technology teams and to the business
- Drafts, reviews, edits information security policies/procedures. Manages security budget and roadmap. Stays current with security legislation and regulatory requirements, including performing gap analyses between guidelines and practice
- Monitors third party providers, suppliers, and security partners. Support vendor management program to assess security posture at third parties
Qualifications:
- Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and/or experience
- 7+ years' experience an IT Security focused role, with 5+ years in a lead role and ability to mentor staff
- Familiar with security controls or concepts related to various security community groups or standards: CISSP Domains, NIST, OSI model, MITRE ATT&ACK frameworks
- Understanding of Cybersecurity Operations models and technologies (cloud, automation, orchestration, analytics, and risk-based approaches). In-depth knowledge of modern security concepts such as common attack vectors, malware, security analytics and threat intelligence
- Proven experience within Incident Response situations. Knowledge of cybersecurity technology trends
- Excellent written and verbal communication skills, and be capable of understanding, documenting, communicating, and presenting technical issues in a non-technical manner to audiences with varying degrees of technical expertise
- Be a team player and enjoy collaborating on cross-functional teams
- CISSP, CCSP, or other relevant industry security-focused certifications preferred
#LI-SW1
#LI-Onsite
Seniority Level: Mid-Senior level
Salary: $160,000 - $200,000
Job Function: Information Technology
Industry: Financial Services
Employment Type: Full-Time
Location: Pasadena, CA
Job Tags
Full time,