Cyber Security Incident Manager

Company Overview

When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there's really only one:
Zones - First Choice for IT. Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done.

Follow Zones, LLC on Twitter @Zones, and Linked In and Facebook.

Term:
Full time, permanent

Location:

Glenview, IL

Pay: $120,000 - $145,000

Hours:

8:00 - 5:00

In this role, this individual will lead the incident response services that monitor cyber incidents at all corporate divisions. This role will oversee all aspects of the incident response program including incident tracking, resolution and reporting. This person will lead the cyber security analysts who are responsible for the day-to-day execution of the incident response services. The Incident Response Manager will review incident response program alerting and monitoring to ensure cyber protections are maintained, improved and properly implemented through performance metrics.

This person will be the security subject matter expert for Incident Response and SOC Monitoring services.

The Incident Response Manager is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. This person will be responsible for researching and recommending new cyber security solutions, participate in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures.

In addition, the Incident Response Manager will develop and implement threat hunting procedures to protect the enterprise environment.

This position requires strong organizational and communications skills to work with both a technical and non-technical audience at all levels. The applicant must also demonstrate an advanced ability to analyze, support, and resolve issues regarding cybersecurity, risk, and compliance. This position will be part of a high-performing team delivering best-in-class IT services to the business.

• Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating.
• Recommend additional solutions or enhancements to existing cyber security services to improve overall enterprise security.
• Monitor all in-place security solutions for efficient and appropriate operations.
• Oversee threat intelligence program, conduct daily reviews of threat landscape, and identify exposure impact to ITW systems.
• Respond to and, where appropriate, facilitate resolution of reported security incidents.
• Review cyber security incidents to identify themes and trends.
• Participate in Critical Incident Response Planning through testing and maintenance of our plans.
• Meet with 3rd Party Vendors to review threat factors and activities and ensure prompt, thorough follow up.
• Lead the team responsible for monitoring system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution.
• Lead the incident response team throughout investigation and resolution of security violations.
• Develop a strong working relationship with the technical operations team to efficiently collaborate on potential security threats, incidents and mitigation efforts.

• Bachelor's degree in Computer Science, Information Systems, Business or related field required.
• 7+ years of experience working in an Information Technology role with 3+ years of direct team leadership experience.
• Ability to work onsite at the Glenview corporate campus.
• Must have had leadership responsibility for leading teams, projects and technology operations.
• High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity.
• Ability to work under pressure; work concurrently on multiple initiatives in different stages and pay attention to detail.
• Strong analytical and problem-solving skills to enable effective security incident and problem resolution.
• Ability to conduct research into IT security issues and products as required.
• Ability to present ideas in business-friendly and user-friendly language.

While…