Manager of Security Operations (MA/CT)
PerkinElmer
This job is no longer accepting applications
See open jobs at PerkinElmer.See open jobs similar to "Manager of Security Operations (MA/CT)" MassCyberCenter.Working at PerkinElmer | Jobs and Careers at PerkinElmer
Manager of Security Operations (MA/CT)
Boston, Massachusetts | Shelton, Connecticut
Responsibilities
Location Boston, MassachusettsUS Job ID REQ-052101Perkin Elmer is searching for a Manager of Security Operations to lead our security incident response transformation.Reporting to the Head of Cybersecurity, the Manager of Security Operations will lead the design, build, and support for a net new security monitoring, threat intel, and incident response cloud security technology stack supporting a 1B+ in revenue global manufacturing and services business.The successful candidate will report to the Head of Cybersecurity and will have the opportunity to build their global team in Boston, Massachusetts; Pune, India; and Rodgau, Germany. The future model for security incident response technology and staffing will including a hybrid security operations center (SOC) model that includes the use of MSSPs and MDR vendors. The security and compliance team will collaborate regularly within a PerkinElmer office location.
The successful candidate will bring expertise and leadership across all aspects of security monitoring, incident response, and threat intelligence, including but not limited to: phishing campaigns, malware analysis, ransomware, zero day vulnerability assessment, active alert monitoring and response, threat hunting, log analysis and cyber forensics; the design, implementation and maintenance of IR run books, use of SOAR, SIEM, and security analytics to prevent, detect, and respond to threats. This role requires a strong work ethic, ability to lead teams, the right blend of technical and non-technical skills, and the ability to align security decisions to business requirements across senior leadership within a global organization.
Responsibilities
- Security incident response and threat leader for a 6000-person, global manufacturing organization operating within 40 countries.
- Build a security operations team that will enable the protection of PerkinElmer’s business across corporate and product security within cloud, multi-cloud, hybrid-cloud, and collocated architectures.
- Protect PerkinElmer systems, instruments, and data supporting a diverse set of enterprise and government customers.
- Incident commander for security incidents, ensuring the timely triage, response, containment, and communications around active security incidents.
- Partner with MSSPs to enable a timely and secure exit from transition services agreements (TSAs) including the design, build and run of the net new security monitoring, threat intel, and incident response cloud security technology stack.
- Partner closely with other team members within the CISO function within the areas of risk, compliance, governance and security architecture and engineering, to ensure alignment with the cross-team requirements.
- Partner with the Cyber Security Team to build and run a net new cloud security technology stack utilizing best of breed and cloud native security technologies across 35+ required security areas.
- Collaborate with business stakeholder across PerkinElmer including, but not limited too, R&D, Quality Management, and Operations.
- Security Monitoring:
- Assist outsource providers in the design and operation of a well-tuned, and actionable security alerting and monitoring flow leveraging threat intel, IOCs, and automation.
- Monitoring across cloud, multi-cloud, hybrid-cloud, operational technology (OT) and on-prem.
- Alignment to MITRE Att&ck or other frameworks.
- Partner with outsourced 24/7 SOC managed detection and response (MDR) service providers for L1, L2, L3 triage and response as needed.
- Incident Response:
- Triage, analyze, respond, and contain active threats.
- Provide cross business incident response leadership and collaboration.
- Tailor response escalation based upon type of incident, level of risk to the business, customer, or regulatory impact (compromise vs unauthorized access vs data exposure vs data breach).
- Provide regular updates to the leadership review based upon incident severity.
- Coordinate with third party IR forensics and legal firms in the event of a significant breach.
- Coordinate with Legal, Sales, and Marketing for external facing security incident communications.
- Partner with outsourced 24/7 SOC managed incident response service provider.
- On Call:
- Manage a security escalation on-call team in Boston, Massachusetts; Hyderabad, India; and Frankfurt, Germany.
- Available 24/7/365 as part of an on-call management escalation chain.
- Threat Intel & Hunting
- Curation, monitoring, and integration of threat intelligence into the security tool chain.
- Partner with internal and external staff for threat hunting and penetration testing activities.
- Vulnerability Management:
- Respond to 0-day vulnerabilities with the security architecture and engineering team.
- ‘Shift Left’ mentality to reduce vulnerabilities.
- Expertise in protecting against OWSAP Top 10.
- Ability to detect vulnerabilities and partner with DevOps on timely remediation based on SLAs.
- Support third party penetration testing.
- Hybrid/Multi-Cloud:
- Consider cloud, hybrid-cloud, multi-cloud, and on-prem technologies in the design and implementation of security monitoring and response technology stack, and staffing models.
- Email & Ransomware Protections:
- Focus on ensuring Perkin Elmer is protected from email based and ransomware attacks
- Monitor emerging ransomware and phishing threats, and implement mitigations in response to those threats as needed.
- Partner with security architecture and engineering to implement security strategies, configurations, and technology to protect against Ransomware.
- Endpoint Security:
- Collaborate with IT on mobile device management (MDM), including critical security controls admin access management, encryption, patching, and remote wipe.
- Perform endpoint forensics as needed in the event of compromise.
- Provide support for security related requests for third-party audits.
- Provide quarterly metrics to leadership on security posture of Perkin Elmer, for the CEO and BOD.
- Manage security vendors, budget, and contract renewals in partnering with procurement and finance.
- Lead the development, maintenance and review of information security policies and procedures.
- Development and implementation of incident response plans, CAPA process, and detailed runbooks.
- Work cross functionality with a quality management team in support of pharmaceutical and regulatory security requirements.
- Mentor and coach junior team members.
- Support information security awareness activities.
- Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities of this job at any time.
Basic Qualifications
- Bachelor’s degree in Computer Science, Information Systems, or related field
- 6+ years experience in security incident response and threat intel
- Experience with cloud, multi-cloud, hybrid-cloud, and on-prem technology architectures
- AWS and Azure Cloud IaaS expertise
- Technical expertise in implementing/configuring and running a SIEM, SOAR, UEBA, Security Analytics, EDR/MDR
- English language proficiency
- Potential Travel 10%
- Must be able to commute with some frequency to Woburn, MA or Shelton, CT for this hybrid remote role and rest of time will be out of home office.
Preferred Experience
- Operational Technology (OT) security experience at a global manufacturing company
- Defending against nation state threat actors
- Past United States Security Clearance
- Experience preferred in applying relevant technical knowledge in the following audits/regulations: SOC 1, SOC 2, SOC 3, ISO 27001, ISO 27017, ISO 27018, ISO 27701, FISMA, FedRAMP, SOX 404, HITRUST CSF, HIPAA, ISO 9001, GxP, 21 CFR Part 11, GAMP 5, EU Annex 11
- Ability to script in languages such as – python, shell, ruby, perl
- Corporate IT / help desk experience
- Experience in leading security efforts for a cloud transformation for a medium to large enterprise organization
- CISSP, CISM or similar certifications preferred
- Master’s degree
Technology Expertise Preferred
- Amazon Web Services (AWS) and Microsoft Azure (AZURE)
- Operating Systems: Windows & Linux
- Zero Trust Network: Zscaler, Palo Alto
- IDP, SSO, MFA – Microsoft, Okta
- IGA – SailPoint, Saviynt
- PAM – Beyond Trust, Saviynt, CyberArk
- MDM – Intune, JAMF, Workspace One
- EDR – SentinelOne, Crowdstrike, Microsoft Defender
- MDR - SentinelOne, Crowdstrike, Microsoft Defender, Expel, Reliaquest
- SIEM – Splunk, Exabeam, LogRhythm
- Log Management – ELK, Data lake as a Service
- Containers – Kubernetes, Docker
- Vulnerability Management – Wiz, Nessus, Qualys, Veracode, Orca
- Secrets Management – Hashicorp, CyberArk, BeyondTrust, Bitwarden
- Service Now
- Atlassian Suite - JIRA & Confluence
The annual compensation range for this full-time position is $125,500 to $188,500. The final base pay offered to the successful candidate will be determined by factors including internal equity, work location, as well as individual qualifications, such as job-related skills, experience, and relevant education or training.
PerkinElmer is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, or veteran status or any other characteristics protected by applicable law. PerkinElmer is committed to a culturally diverse workforce.
Recently Viewed Jobs
You have not recently viewed any jobs.
Saved Jobs
You have not saved any jobs.
"PerkinElmer is committed to making the world a better place, from helping improve the environment to the health of people around the world. It is a company with strong values."
-
-
Community Impact
We are committed to making a difference in our communities through strategic philanthropy, partnerships and employee volunteerism. Learn More »
-
Core Values
Our achievements are built on a solid foundation of core values that inspire action, integrity, teamwork and outstanding results. Learn More »
This job is no longer accepting applications
See open jobs at PerkinElmer.See open jobs similar to "Manager of Security Operations (MA/CT)" MassCyberCenter.