Cybersecurity Operations Center (CSOC) Supervisor
Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.
Millsboro, DE 19966
Provides leadership in support of the Cybersecurity Department. Coordinates with individual teams with one or more Subject Matter Experts (SMEs) with responsibilities including, but not limited to, execute Cybersecurity Operations strategies, Cybersecurity controls testing, review of Cybersecurity policies and standards, and execute enterprise Cybersecurity awareness and training program. Identifies and communicates Cybersecurity threats, vulnerabilities, risks, emerging trends, and mitigation strategies in alignment with the organization’s risk appetite. Reports on Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for areas of responsibility and identifies appropriate remediation efforts when required.
+ Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support cybersecurity goals and objectives and reduce overall organizational risk.
+ Lead initiatives with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance.
+ Coordinate and lead security improvement actions to evaluate, validate, and implement solutions as required.
+ Lead and align cybersecurity priorities within the Department’s overall security strategy.
+ Monitor and evaluate the effectiveness of the enterprise’s cybersecurity safeguards to ensure they provide the intended level of protection.
+ Participate in cybersecurity risk assessments and risk mitigation strategies.
+ Contribute towards the preparation, creation, distribution, and maintenance of plans, instructions, guidance, and Standard Operating Procedures (SOPs) concerning the security of Cybersecurity Operations.
+ Provide leadership and direction that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities within the team.
+ Review, evaluate, and recommend protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
+ Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management and terminations.
+ Direct metrics collection, reporting and trending as scheduled to management as well as supporting audits, and consultation services.
+ Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Design, implement, maintain and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
+ Promote an environment that supports diversity and reflects the M&T Bank brand.
+ Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
+ Complete other related duties as assigned.
Scope of Responsibilities:
+ Cybersecurity Operations: Oversee under guidance of higher management, the Cybersecurity Operations Center environment and program, including managing daily operations, strategy, policy, procedure, security awareness training, and leading personnel and staffing. Responsible for review and adherence of Cybersecurity Defense Analyst scheduling and staffing to ensure lossless 24×7×365 coverage. Responsible for reviewing and analyzing service demands, security activity, staff performance, and Cybersecurity Operations actions to analyze gaps in efficiency. Responsible for review, analysis, and functional operational requirements for the Incident Response Platform to facilitate Cyber Defense Analyst workflow processing and incident remediation.
Education and Experience Required:
+ Associates degree or higher in Computer Science or Information Assurance and a minimum of 4 years’ relevant work experience, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience, including a minimum of 4 years’ relevant experience
+ Minimum of 2 years’ work leadership and/or supervisory experience
+ Understanding of Cybersecurity operational processes
+ Understanding of Cybersecurity threats, vulnerabilities, emerging trends, and regulatory and operational impacts
+ Experience utilizing feedback to drive process and service improvement
+ Capable of managing stakeholder relationships, including determining needs, requirements, and resources, and managing stakeholder expectations while committing to delivering quality results
+ Capable of communicating complex information, concepts, or ideas in a confident, accurate, and well-organized manner through verbal, written, and/or visual media
+ Experience adjusting to and operating in a diverse, challenging, and unpredictable fast-paced work environment
+ Experience coordinating, collaborating, and disseminating information to subordinate, peer, and leadership teams, departments, and organizations
+ Experience advising and providing assistance to operations in response to dynamic situations
+ Ability to oversee and coordinate with a Cybersecurity team of analysts, including the training and development of staff
+ Knowledge of testing and maintaining network infrastructure requirements, including hardware and software systems
+ Experience translating functional organizational and department requirements into logical and technical Cybersecurity solutions
+ Experience managing operations following organizationally-specific guidelines and documents
+ Understanding and knowledge of processes for reviewing, verifying, and revising Cybersecurity and operational documentation reflecting the application or system security design features
+ Understanding of Cybersecurity strategy and plan development
Education and Experience Preferred:
+ Bachelor degree in an applicable discipline
+ Minimum of 1 year demonstrated job progression and relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations
+ Broad technology experience with enterprise-level IT technologies including networks, endpoints, virtualization, cloud, operating systems, email, storage, databases, etc.
Millsboro, Delaware, United States of America
At M&T Bank, we understand what’s important when you’re considering a career. M&T strives to be the best company our employees ever work for, the best bank our customers ever do business with, and the best investment our shareholders ever make.
The key features of our culture are our:
+ Heritage of strength and stability
+ Exceptional and long-tenured employees
+ Focus on long-term client relationships
+ Commitment to the communities we serve
+ Commitment to our shareholders
When applying for a job at M&T Bank, candidates are required to complete a candidate profile.
If you are unable to apply for career opportunities through use of this site due to an impairment or disability, please contact us at email@example.com for further assistance.
M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.
M&T Bank Corporation does not sponsor individuals for the purpose of obtaining H-1 Visas.
M&T Bank Corporation has policies and procedures in place to promote a drug free workplace.