Job Description:

Role Summary/Purpose:

The SVP, Information Security Intelligence, Operations, and Response is an executive level position responsible for providing senior technology vision, leadership, and strategy to Synchrony Financials Information Security Operations including Joint Security Operations Center (JSOC), Cybersecurity intelligence, Computer Incident Response Team (CIRT) function, Cyber hunt, Cybersecurity investigations, Fraud analysis, Data Loss Prevention (DLP); and Insider threat. H/she will build teams and products to identify and report emerging threats and trends and provide peer and escalation review of alerts generated. This position will also provide technical engineering and/or architectural guidance for existing operations, new products and services. They will develop response strategies for specific threats or threat groups.

We’re proud to offer you choice and flexibility. You have the option to be remote, and work from home, or come into one of our offices. You may be occasionally requested to commute to our nearest office for in person engagement activities such as team meetings, training and culture events.

Essential Responsibilities:

• Set organizational strategy and operation rhythms for all core Information Security (IS) Operations functions.

• Key leadership of the Synchrony Joint Security Operations Center (JSOC), partnering with IT, CSO/Physical Security, and Fraud.

• Lead the threat detection & prevention programs to ingest intelligence information, develop signatures, analyze alerts, and escalate events/incidents based on established criteria and SLAs .

• Lead the Data Loss Prevention (DLP), and Insider Threat Program.

• Lead the cybersecurity hunt program, identifying patterns and emerging threats within the enterprise.

• Develop metrics to track the performance and efficiency of the threat detection and prevention programs.

• Design and implement procedures and controls necessary to ensure and protect the safety and security of all information systems assets, including prevention of intentional or inadvertent access, modification, disclosure, or destruction.

• Develop and lead the threat intelligence team to monitor, vet. and leverage multiple intelligence sources such as human intelligence, open source intelligence, industry vendors and public-private partnerships.

• Drive intelligence operationalization capabilities such as automated sensor enrichment and information sharing.

• Develop specialized intelligence products, threat analyses, production support, and tailored intelligence products.

• Manage the intelligence requirements process, synthesize priority intelligence requirements and coordinate the intelligence collection from a variety of sources.

• Analyze current intelligence holdings, identify potential shortfalls, gaps and vulnerabilities to develop subsequent collection requirements.

• Utilize processes and technologies to prevent and detect malicious attacks to corporate assets and maintain the appropriate containment and recovery response to events.

• Evaluate IDS (Intrusion Detection System) signature design, effectiveness, and distribution.

• Assess IDS alerts and identifying the appropriate criticality ratings which drive response and escalation.

• Utilize processes and technologies to prevent and detect malicious attacks to corporate asset and maintain the appropriate containment of events.

• Evaluate and mitigate malware threats correlate events across Data Loss Prevention controls and utilize blacklists where appropriate.

• Develop and enhance tools, techniques, and processes which result in greater efficiency and effectiveness of malware countermeasure controls.

• Reverse engineer malware processes and identify origins of malware infection.

• Review security event logs, web application logs, netflow logs and other data to identify network and host based anomalies.

• Perform static and dynamic reverse engineering of malware.

• Analyze PCAPs (Packet Capture) to develop signatures and understand payloads.

• Identify indicators of compromise from a honeynet environment and ongoing investigations to assist clients in defending against the most current threats.

• Identify and overcome obstacles with data acquisition, preservation, and analysis in dynamic client environments.

• Effectively communicate through verbal briefings and written reports.

• Understand the tenets of forensic processes and how to adapt those principles to real world situations.

• Set the right tone and posture around all financial, regulatory, compliance, and process governance.

• Responsible for people management activities including performance management, compensation planning, and organization and staffing.

• Financial planning and ownership of program budgets. 

• Leverage industry network resources to benchmark and identify trending and opportunity.

• Perform other duties and/or special projects as assigned

Qualifications/Requirements:

• Bachelor’s Degree in Computer Science, Software Engineering, Information Technology, Information Assurance, Computer Information Systems, or other related field and a minimum of 12 years of IT experience with a minimum of 10 years leadership experience.

• Minimum 5 years networking cybersecurity vulnerability threat management.

• Minimum of 7 years of experience developing and executing strategic plans, influencing skills, managing complex program and leading collaborative relationships in a cross- functional team environment.

• Minimum 7 years managing scalable teams.

• Superior decision-making skills.

• Deep technical understanding of Information Security operations in Financial Services.

• Superior oral, written, and client communication skills, as well as the ability to manage expectations of the business, clients, team members, management and external groups.

• Minimum 7 years of experience leading a 24/7 global operation; ability to keep calm under pressure and dedication required to lead such an operation.

Desired Characteristics:

• Industry recognized certifications such as CISSP, CISA, CISM, GCIH, GREM, CSIRT, ACE, EnCE strongly preferred.

• Proven track record of acting as a strategic Information Security business partner with senior leadership.

• Proven track record of leading and executing on critical business initiatives on-time and within budget.

• Demonstrated effectiveness in driving change and working effectively across business boundaries.

• Demonstrated competency aligning business strategy with IT technology\Information Security initiatives.

Grade/Level: 15

The salary range for this position is 200,000.00 - 330,000.00 USD Annual. This position is also eligible for an Annual Incentive Plan target of 25% of salary and an Annual Equity target of 25% of salary.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

• You must be 18 years or older

• You must have a high school diploma or equivalent

• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

• New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months’ time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months’ time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don’t meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. 

Our Commitment:

When you join us, you’ll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard—but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we’re building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks , with more than 60% of our workforce engaged, you’ll find community to connect with an opportunity to go beyond your passions.

This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

• Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

• If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am – 5pm Monday to Friday, Central Standard Time

Job Family Group: