Manager - Threat Management - IT

Position Title :

Manager - Threat Management

Business Unit - Risk and Compliance

Position Summary :

- The Threat Management Manager will oversee the implementation and execution of the Vulnerability Management, Security Configuration Management, Threat Intelligence and Security Operational Metrics functions.

- He / She is responsible for providing project leadership in the development and execution of the threat management programs and partnering with internal stakeholders for successful deployment globally. The job also mandates the development of security metrics to measure operational effectiveness and the timely identification of execution gaps.

Key Quantitative Measures/Data :

The Threat Management Implementation Manager is expected to perform the following functions.

- Develop programs for the identification and remediation of technology vulnerabilities.

- Develop programs for the identification and remediation of insecure configuration issues.

- Develop program for intake of cyber intelligence, communication to applicable stakeholders and management to resolution.

- Oversee product implementation and program management of GRC technologies.

- Reporting and reviewing information security risk metrics and operational effectiveness metrics.

Major Areas of Responsibility :

Key Performance Indicator Major Tasks :

- Manages the vulnerability remediation program, security configuration management processes, threat intelligence program and security operational metrics.

- Demonstrate technical and project management skills in vulnerabilities, technology standards and threat intelligence.

- Collaborate with internal stakeholders on the acceptance of remediation timeframes and project tracking to closure.

- Conducts project meetings to update stakeholders of current program status.

- Show innovation by driving changes to improve information security maturity.

- Participate in a team environment in order to deliver a seamless service.

- Actively engage the team in Information Security.

- Attend and actively participate in team meetings.

- Participate in training and personal development courses.

- Engage peers to leverage best practices and share knowledge.

Manage service processes and procedures :

- Support Information Security activities.

- Review Information Security process documentation on a regular basis.

- Ensure delivery of services to applicable standards, policies and regulations.

Problem Solving :

- The Threat Management Manager will present the following challenges an adequate response to which will require some of the following aptitudes.

- Interface with the Global Information Technology team, Risk & Compliance team members and Business stakeholders.

- Requires the ability to respond proactively within the scope of a global, fast-moving corporation.

- Manage escalations, incidents, and complex problems.

- Requires the ability to judge the gravity of a situation and an awareness as to what one can to, personally to bring it to resolution, as well as when to seek assistance.

- Maintain professionalism, solution focus, and loyalty to R&C and the larger objectives.

- Requires the ability to distinguish between client interests and interests and, knowing the distinction, to act in keeping with best interests.

- Maintain a positive attitude and provide an example of model behaviors to junior staff, particularly those in R&C function

- Requires the ability to maintain a perspective on events, understanding service provision is a field that is rife with highs and lows.

Qualifications and Experience Required :

- Educational : Degree in IT preferred

Professional Qualifications :

- Desirable - PMP

- Desirable - CISA, CISM and/or CISSP

Experience :

- Desirable - 5-7 years- experience in IT, including 5 years in IT security, Audit or Risk and compliance.

- 5 plus years of management experience

- Desirable - Understandings of ISO 27001, ITIL.

- Experience and understanding of Problem, change, and escalation Process.

Charanpreet