Information Security/ Cybersecurity Lead

Job Summary:

Position Overview

We are seeking a highly motivated and experienced Information Security Manager/ Lead with 6+ years of experience to join our team. In this role, you will play a crucial part in implementing and maintaining our information security best practices. You will work independently with latitude to make key decisions, leveraging your deep expertise to protect our organization's assets. We are looking for a self-starter who is diligent, detail-oriented, and passionate about cybersecurity.

Key Responsibilities

Security Implementation & Documentation

Implement Security Best Practices: Independently drive the implementation of information security best practices across the organization.
Comprehensive Documentation: Meticulously document all work performed, ensuring clear and accurate records for auditing and knowledge sharing.
Reporting: Generate timely and informative reports within Atlassian tools, providing insights into security posture and progress.

SIEM & Log Management

Expert-Level Knowledge: Utilize your expert-level knowledge of Security Information and Event Management (SIEM) systems to enhance our threat detection and response capabilities.
Dashboard Building: Design and build insightful dashboards to visualize key security metrics and trends.
Log Parsing: Perform advanced log parsing and analysis to identify and investigate security incidents.
Rapid7 InsightDR (Ideal): Leverage your experience with Rapid7 InsightDR (or similar SIEM tools) to maximize its effectiveness.

Vulnerability Management

Vulnerability Management Program: Oversee all phases of our Vulnerability Management Program, from identification to remediation.
Rapid7 InsightVM (Preferred): Ideally, have experience with Rapid7 InsightVM, but experience with any vulnerability management platform will be considered.

Security Technologies & Platforms

Email Security: Configure and manage email security solutions to protect against phishing, malware, and other email-based threats.
Entra ID/M365 Security: Secure our Entra ID (formerly Azure AD) and Microsoft 365 environment, implementing best practices for identity and access management.
Email Security Gateways: Administer and optimize email security gateways, preferably Mimecast, to filter malicious content.
Advanced Endpoint Protection: Manage and enhance our Advanced Endpoint Protection (AEP) solution, ideally CrowdStrike, to safeguard endpoints from advanced threats.

Required Qualifications:

Experience

Overall Experience: Minimum of 6 years of experience in information security or a related field.
Technical Skills

SIEM Expertise: Expert-level knowledge of SIEM technologies, including dashboard building and log parsing.
Vulnerability Management: Deep understanding of Vulnerability Management Programs and processes.
Security Technologies: Hands-on experience with email security, identity and access management, and endpoint protection solutions.
Atlassian Tools: Proficiency in using Atlassian tools for documentation and reporting.
Soft Skills

Independent Work Ethic: Ability to work independently with minimal supervision.
Diligence and Detail Orientation: Meticulous attention to detail and commitment to thorough documentation.
Problem-Solving Skills: Strong analytical and problem-solving skills.