If you are motivated and believe in the credit union philosophy of "People Helping People," join our team!
Position Overview:
SVP - Cyber Security Ops Center & Assurance, will oversee and drive the strategic direction for our Security Operations Center and ancillary services, including incident detection and response, vulnerability management, penetration testing, cyber threat intelligence and offensive security initiatives. The ideal candidate will be a visionary leader with a deep understanding of cybersecurity threats, capable of building high-performing teams, implementing robust processes, and ensuring our security posture aligns with business objectives. Reporting to the Chief Information Security Officer (CISO), you will play a key role in safeguarding our assets, mitigating risks, and fostering a culture of proactive security.
Essential Responsibilities:
- (20 %) Strategic Leadership and Planning: Develop and execute the overall strategy for security operations and assurance, aligning with organizational goals and industry best practices. Lead roadmap development for SOC enhancements, vulnerability management programs, and red team/offensive security exercises. Drive innovation in security operations through process optimization, threat hunting initiatives, and integration of AI/ML for predictive analytics.
- (15 %) SOC Oversight: Manage the Incident detection and response team to ensure effective 24/7 incident detection, triage, response, and recovery. Implement advanced monitoring tools, threat intelligence integration, and automation to improve response times and accuracy. Evaluate and manage relationships with security vendors, tools, and services. Stay abreast of emerging technologies and threats to recommend investments in security capabilities.
- (15 %) Vulnerability Management: Oversee the identification, assessment, prioritization, and remediation of vulnerabilities across systems, applications, and networks. Establish metrics and reporting to track program effectiveness and compliance.
- (15 %) Penetration Testing and Offensive Security: Direct internal and external penetration testing efforts, including ethical hacking simulations and red team operations. Analyze findings to recommend defensive improvements and enhance overall resilience.
- (15%) Team Management and Development: Build, mentor, and lead a cross-functional team of security analysts, engineers, and specialists. Foster professional growth through training, performance evaluations, and career development opportunities.
- (10 %) Vendor and Technology Management: Evaluate and manage relationships with security vendors, tools, and services. Stay abreast of emerging technologies and threats to recommend investments in security capabilities.
- (10 %) Reporting and Communication: Provide executive-level reporting on security metrics, incidents, and program status. Communicate complex security concepts to non-technical stakeholders effectively.
Required Education & Experience (Knowledge, Skills, & Abilities):
- Bachelor’s degree 8 years of experience in cybersecurity, with at least 2 years in a leadership role managing security operations or assurance teams.
- Minimum certifications CISSP, CISM, GIAC (e.g., GSOM, GCIH, GPEN), or equivalent.
- Expertise leading and developing Security Operations Center services to include:
- SOC design and operational planning
- SOC telemetry and analysis
- Attack detection, threat hunting and triage
- Cyber incident investigation and response
- Expertise leading and developing Security Assurance services to include:
- Penetration testing
- Cyber threat intelligence
- Vulnerability scanning and remediation
- Red/purple teaming
Preferred Education & Experience (Knowledge, Skills, & Abilities):
- B.A. Information Security or Computer Science
- Preferred certifications CISSP, GSOM
- 8 direct years SOC leadership
- Knowledge of NICE and ECSF frameworks
- Experience managing hybrid SOC: internal with MSSP support
Job Environment & Physical Requirements:
- Hybrid work environment; 2 days on location in Raleigh, NC
SECU provides equal employment opportunity to all qualified persons regardless of race, color, religion, age, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or other classification protected by law.
Disclaimer
State Employees' Credit Union reserves the right to fill this role at a higher/lower level based on business need.