Job Location : all cities,NH, USA
Accepting applicants in the following states: CT, FL, GA, MA, MN, NC, NE, NH, NJ, OH, RI, SC, TX, UT, VA
The Security Incident and Vulnerability Manager is responsible for leading the security incident response team in identifying, analyzing, and resolving client security incidents, ensuring the protection of client organization, systems, and information. They manage the swift mitigation of security incidents and provide clear and timely reports on security incidents and remediation efforts. This role coordinates security projects and ensures compliance with client requirements. Additionally, they mentor the security incident response team and collaborate with cross-functional departments to safeguard client assets.
Essential Duties and Responsibilities
* Regularly meet with BCS365 clients to review and discuss reporting and metrics.
* Lead the security response and vulnerability management teams in detecting, analyzing, and responding to security incidents.
* Oversee the investigation of client security breaches and mitigate risks to prevent future incidents.
* Ensure incidents are documented and reported in compliance with BCS365 policies and procedures.
* Lead, mentor, and manage the security incident response and vulnerability team.
* Develop roles, responsibilities, and escalation procedures within the security operations teams.
* Serve as the primary liaison with clients on security matters, including incident reporting and project status updates.
* Provide clear and concise explanations of security events, their impact, and remediation efforts to both technical and non-technical stakeholders.
* Deliver timely security reports to clients, ensuring compliance with Service Level Agreements (SLAs).
* Conduct incident debriefs and coordinate with compliance teams and senior management.
* Develop and maintain playbooks, runbooks, workflows, and other incident management protocols for handling different types of cyber threats.
* Lead risk assessments of client systems and operations and develop mitigations strategies.
* Coordinate with security analysts and engineers to implement and improve security measures based on client requirements.
* Produce and report to clients on key security metrics, trends, and risk indicators.
* Evaluate and integrate new security tools and technologies to improve detection, response, and overall security posture of the client.
* Stay updated on the latest security trends, vulnerabilities, and best practices, applying relevant insights to enhance the client's security infrastructure.
* Provides responsive support for problems found during normal working hours as well as outside normal working hours as needed.
Competencies, Skills, and Qualifications
* 5+ years of security experience working with Endpoint Security, Intrusion Prevention, and Firewall security
* 5+ years in a management position
* MSP experience required
* Proven work experience as a system security engineer or information security engineer
* Experience in building and maintaining security systems
* Detailed technical knowledge of database and operating system security
* Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
* Experience with network security and networking technologies and with system, security, and network monitoring tools
* Thorough understanding of the latest security principles, techniques, and protocols
* Problem solving skills and ability to work under pressure
* BS degree in Computer Science or related field
Certifications
* Ethical Hacker - Required
* Associate of (ISC) - Required
* CISSP (Certified Information Systems Security Professional) - Required
* CCNP Security - Preferred
BCS365 is an Equal Opportunity Employer. We consider applicants for all positions without discrimination based on race, color, religion, creed, gender, national origin, sexual orientation, age marital or veteran status, disability, or any other legally protected status.
Please Note: BCS365 participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.