Cybersecurity Lead

About the role:

The Senior Cybersecurity Lead is responsible for the design, implementation, management, and support of eMeds systems. This role involves collaborating with multiple teams to ensure the stability, scalability, and performance of servers, networks, storage, and cloud environments.

• Bachelor’s degree in Computer Science, Cybersecurity, Information Security or related field, however, a combination of experience, education, and certifications are acceptable
• Strong technical expertise, leadership abilities, and a proactive approach to problem-solving
• A minimum of 5 years of related work experience with information security systems, including hands-on SIEM technical infrastructure and implementation experience, with increasingly greater responsibility
• Familiarity with security technologies (Cloud, DLP, firewalls, IDS/IPS, EDR, etc.) and other SOAR products
• Expert level experience working with security technologies such as (Cloud, IDS / IPS, Firewalls, SIEM, Antivirus, Network Behavior Analysis tools, Malware analysis, Firewalls, endpoint protection, DLP)

Responsibilities:

• Partnering with our Managed Security Service Provider (MSSP) to manage the Security Information and Event Management (SIEM) system, developing and implementing detection mechanisms to identify and mitigate security threats
• Respond to Cyber Security incidents as they are detected, ensuring all malicious activities are identified, mitigated, and remediated
• Review and analyze data and network traffic from numerous security tools in order to detect traffic anomalies, identify infected systems and determine movement of infections across the network
• Contribute to incident response, maintaining relevant communication in emails, ticket summaries, analysis and reporting
• Perform malware analysis, identify areas of persistence on user devices and detect indicators associated with malware or specific Advanced Persistent Threat (APT) techniques
• Review, create or update standard operating procedures, recommendations, project specific documents and resource guides as needed
• Serve as a key cyber security SME and trusted advisor to the Director of Information Security; advise leaders across the organization on actions to take during security events and potential or active threats to the company’s security posture, as well as our third parties, key partners, and acquired entities
• Generate reports on security findings, trends, and recommendations for improvement